alibabacloud-emr-starrocks-manage
Pass
Audited by Gen Agent Trust Hub on Apr 1, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security issues were detected in the skill's instructions or metadata.
- [COMMAND_EXECUTION]: The skill uses the aliyun CLI to interact with cloud APIs. To mitigate command injection risks, it instructs the agent to validate all user-supplied inputs using strict regular expression patterns and to use JSON request bodies where possible for parameter passing.
- [DATA_EXFILTRATION]: The skill handles sensitive information such as administration passwords and access tokens. It includes dedicated Sensitive Data Masking protocols requiring the agent to redact or mask this information in all outputs and logs, effectively preventing accidental exposure or exfiltration.
- [REMOTE_CODE_EXECUTION]: The skill explicitly prohibits the download and execution of external scripts, dependencies, or remote content, ensuring the agent remains within the bounds of the pre-installed aliyun CLI environment.
Audit Metadata