alibabacloud-cfw-ips-event
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill executes Aliyun CLI commands (
aliyun cloudfw) to retrieve security data from Alibaba Cloud. This is the primary intended function of the skill and uses the vendor's official toolset. - [SAFE]: The skill implements strict input validation for all parameters (RegionId, IPs, timestamps, etc.) before they are interpolated into CLI command templates, preventing command injection.
- [SAFE]: Instructions explicitly prohibit reading, printing, or requesting sensitive credentials (AK/SK) within the session, directing users to configure them securely via the CLI's standard configuration mechanism.
- [EXTERNAL_DOWNLOADS]: The documentation provides instructions for installing the Aliyun CLI from official Alibaba Cloud domains (alicdn.com). These are trusted vendor resources and do not represent a security risk.
- [DATA_EXFILTRATION]: All network operations are performed via the official Aliyun CLI to Alibaba Cloud's API endpoints. No unauthorized data transmission to third-party domains was detected.
Audit Metadata