cloudbase

Pass

Audited by Gen Agent Trust Hub on May 19, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill provides official development guidelines for Tencent CloudBase. No malicious obfuscation, prompt injection, or unauthorized data exfiltration patterns were identified.
  • [COMMAND_EXECUTION]: Instructions involve using npx to run official CloudBase tools such as mcporter and @cloudbase/cloudbase-mcp, as well as standard project management commands. These are legitimate for the described development workflow.
  • [REMOTE_CODE_EXECUTION]: External package references and installations, such as npm install @cloudbase/js-sdk, are restricted to official vendor packages in public registries.
  • [DATA_EXFILTRATION]: The skill encourages secure authentication practices, specifically advising against hardcoding credentials and instead using interactive device-flow login. Network operations are directed towards official Tencent Cloud domains (e.g., tencent.com, cloudbase.net) for resource management and documentation access.
Audit Metadata
Risk Level
SAFE
Analyzed
May 19, 2026, 05:06 PM
Security Audit — agent-trust-hub — cloudbase