bk-cli-bcs

Pass

Audited by Gen Agent Trust Hub on Jul 1, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill is designed to construct and execute commands via the bk-cli binary to interact with the BlueKing Container Service (BCS) API. This is the primary and intended function of the skill.
  • [PROMPT_INJECTION]: The skill defines a surface for indirect prompt injection as it interpolates user-provided parameters (such as cluster IDs, node IPs, and JSON bodies) into shell commands. However, the skill provides mitigation strategies for the agent, such as using the --dry-run flag to verify the generated request before execution and using -h --body-schema to validate data structures.
Audit Metadata
Risk Level
SAFE
Analyzed
Jul 1, 2026, 04:06 PM
Security Audit — agent-trust-hub — bk-cli-bcs