huawei-cloud-sac-new-api
Pass
Audited by Gen Agent Trust Hub on Jun 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill automates infrastructure deployment using Terraform with mandatory user confirmation steps ('terraform plan' before 'apply').
- [SAFE]: Credential management follows security best practices. Huawei Cloud AK/SK are handled via environment variables and local configuration files, with multiple explicit warnings to the user to avoid displaying or sharing sensitive files like 'terraform.auto.tfvars.json'.
- [SAFE]: A dedicated utility script ('scripts/sensitive_mask.py') is implemented to mask access keys and passwords in any script output, preventing accidental exposure in conversation logs.
- [SAFE]: External dependencies and templates are sourced from trusted providers (Hashicorp) or official vendor infrastructure (Huawei Cloud OBS buckets).
- [SAFE]: Browser automation via Playwright is restricted to information extraction from official Huawei Cloud solution pages.
Audit Metadata