alibabacloud-ecs-diagnose
Pass
Audited by Gen Agent Trust Hub on Apr 1, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is a well-documented administrative utility for Alibaba Cloud services. It traces all actions back to official vendor infrastructure and implements multiple layers of user confirmation for any action that could affect instance state or security posture.
- [REMOTE_CODE_EXECUTION]: The skill uses the
aliyun ecs run-commandfeature to perform deep diagnostics inside the guest operating system. This is a core intended functionality of the tool; the instructions include mandatory checkpoints requiring explicit user approval before these commands are sent to the target instance. - [COMMAND_EXECUTION]: The skill interacts with the cloud environment via the Aliyun CLI. It correctly utilizes standardized flags, including a custom user-agent for tracking, and focuses primarily on read-only API calls for basic troubleshooting.
- [EXTERNAL_DOWNLOADS]: The documentation provides links to fetch the official Aliyun CLI from
aliyuncli.alicdn.com. These are verified vendor-owned resources for Alibaba Cloud and are treated as safe download sources. - [CREDENTIALS_UNSAFE]: The skill implements robust credential safety rules. It forbids the agent from reading, echoing, or asking the user for AccessKey/SecretKey values, instead directing the user to configure credentials through official CLI methods outside of the conversation context.
Audit Metadata