Skills
skills/aliyun/alibabacloud-skills/alibabacloud-bailian-rag-knowledgebase/Gen Agent Trust Hub

alibabacloud-bailian-rag-knowledgebase

Pass

Audited by Gen Agent Trust Hub on Apr 28, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill uses the official Alibaba Cloud default credential chain, which allows it to leverage existing environment configurations (like those from the aliyun CLI) without needing to handle or store raw AccessKey/SecretKey credentials.
  • [EXTERNAL_DOWNLOADS]: Downloads and uses official Alibaba Cloud SDK packages (@alicloud/bailian20231229, @alicloud/modelstudio20260210, etc.) from the npm registry.
  • [COMMAND_EXECUTION]: Uses child_process.execSync in scripts/check_env.js to verify if required npm packages are installed. This execution is limited to a hardcoded whitelist of package names.
  • [DATA_EXFILTRATION]: No unauthorized data access or external transmission patterns were detected. Network calls are directed to official Alibaba Cloud API endpoints.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 28, 2026, 11:13 AM