alibabacloud-flink-instance-manage
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns, obfuscation, or data exfiltration attempts were detected.
- [CREDENTIALS_UNSAFE]: The skill explicitly instructs against hardcoding AccessKeys and utilizes the official Alibaba Cloud SDK default credential chain (
alibabacloud-credentials) to securely resolve identity from the environment (CLI profiles or RAM roles). - [COMMAND_EXECUTION]: All resource operations are restricted to a local Python script (
scripts/instance_ops.py) that acts as a safety-checked wrapper around official API calls. Standard diagnostic commands (aliyun version,aliyun configure list) are used for environment verification. - [EXTERNAL_DOWNLOADS]: The documentation provides instructions to download the Aliyun CLI from the vendor's official content delivery network (
aliyuncli.alicdn.com). All Python dependencies are official, versioned packages from the Alibaba Cloud SDK ecosystem.
Audit Metadata