alibabacloud-esa-pages-deploy
Pass
Audited by Gen Agent Trust Hub on Apr 1, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill uses official Alibaba Cloud SDKs (@alicloud/esa20240910, @alicloud/openapi-client, @alicloud/credentials) to interact with cloud services. All dependencies are legitimate vendor-provided packages for managing cloud resources.
- [SAFE]: Network operations are restricted to established Alibaba Cloud API endpoints (esa.cn-hangzhou.aliyuncs.com) and service-generated OSS upload URLs. This behavior is consistent with the primary purpose of deploying content to the cloud.
- [SAFE]: File system access is limited to reading local source code, HTML files, or static asset directories as specified by the user for packaging (via jszip) and deployment.
- [SAFE]: The skill follows secure credential management practices by utilizing the official Alibaba Cloud default credential chain, avoiding the use of hardcoded secrets and instructing users to use standard environment-based authentication.
Audit Metadata