Skills
skills/qwencloud/qwencloud-ai/qwencloud-model-selector/Gen Agent Trust Hub

qwencloud-model-selector

Pass

Audited by Gen Agent Trust Hub on Apr 30, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses the official vendor CLI tool (qwencloud) to retrieve model metadata, pricing, and authentication status.
  • [COMMAND_EXECUTION]: To assist with the authentication flow, the skill executes platform-specific commands (open, xdg-open, start) to open verification URLs in the user's browser.
  • [EXTERNAL_DOWNLOADS]: The skill recommends installing the official vendor CLI tool via the NPM registry (@qwencloud/qwencloud-cli).
  • [SAFE]: The instructions include strong security guidelines, explicitly forbidding the output of API keys in plaintext and emphasizing the use of environment variables for credential management.
  • [SAFE]: Any modifications to the agent's local configuration files (e.g., CLAUDE.md) are gated by a requirement to ask the user for permission first.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 30, 2026, 01:25 PM