aliyun-cdn-skill
Pass
Audited by Gen Agent Trust Hub on Apr 7, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires official Alibaba Cloud SDK packages, including alibabacloud_cdn20180510, alibabacloud_credentials, and alibabacloud_tea_openapi. These are standard libraries for interacting with Alibaba Cloud services and are sourced from official package registries.
- [COMMAND_EXECUTION]: The SKILL.md file includes instructions for running diagnostic shell commands to verify the environment setup, such as checking for the presence of Access Keys in environment variables and verifying the .env file. These commands are benign and intended for configuration verification.
- [CREDENTIALS_UNSAFE]: The skill interacts with sensitive credentials, including Alibaba Cloud Access Keys and SSL private keys. It adheres to security best practices by instructing users to manage these via environment variables or .env files rather than hardcoding them within the scripts. It utilizes the official alibabacloud_credentials library for secure credential resolution.
Audit Metadata