cloudbase-platform
Pass
Audited by Gen Agent Trust Hub on May 14, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches sibling skill instructions and configuration files from official Tencent CloudBase repositories on cnb.cool. This is used for routing the agent to specialized implementation guides for web development, authentication, and cloud functions.
- [COMMAND_EXECUTION]: Directs the agent to utilize administrative tools (e.g.,
envQuery,managePermissions,manageGateway,manageStorage) to interact with the CloudBase platform. It includes instructions for managing resource permissions and domain settings based on user requirements. - [PROMPT_INJECTION]: Identifies an indirect prompt injection surface where the agent processes environment metadata (such as CDN domains and environment IDs) and user-provided aliases to initialize SDKs and construct console URLs. The skill also provides a pattern for recording tool operation steps and results to a local file (
RESULT.json) for persistence and summarizing task status. - [DATA_EXFILTRATION]: Describes the construction of public access URLs by concatenating environment metadata (CdnDomain) with storage paths. This represents standard platform functionality for accessing cloud storage objects.
Audit Metadata