alibabacloud-emr-spark-manage
Pass
Audited by Gen Agent Trust Hub on Mar 31, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security vulnerabilities, malicious patterns, or deceptive behaviors were identified. The skill's functionality is consistent with its stated purpose of managing Alibaba Cloud services.
- [COMMAND_EXECUTION]: The skill instructs the agent to execute commands via the official Alibaba Cloud CLI (
aliyun). These commands are scoped to the EMR Serverless Spark service. Robust safety guidelines are included, mandating that the agent validates all parameters and obtains explicit user approval before executing any write or delete operations. - [CREDENTIALS_UNSAFE]: The skill correctly implements security best practices by relying on the Alibaba Cloud CLI's built-in credential management system. It avoids hardcoding secrets and directs users to the official configuration workflows.
- [DATA_EXFILTRATION]: All network activity is directed toward official Alibaba Cloud API endpoints (aliyuncs.com) and Object Storage Service (OSS) buckets. No unauthorized access to sensitive local files or attempts to send data to unknown external domains were detected.
Audit Metadata