The Agent Skills Directory

[COMMAND_EXECUTION]: The skill provides numerous SQL queries and shell commands (specifically curl) for the user to execute. These commands are intended for information gathering from ClickHouse clusters and executing migration steps. The skill includes timeout settings and read-only flags in SQL templates to minimize impact on source systems.
[CREDENTIALS_UNSAFE]: In references/sql.md and SKILL.md, the skill prompts the user to provide database connection details, including host, port, username, and password. However, it specifically includes a 'Credential Security Guidelines' section (Section 5 of references/sql.md) that warns against using plaintext passwords in command history and recommends secure alternatives such as environment variables and .netrc files.
[DATA_EXFILTRATION]: The skill guides the user to perform network operations using the remote() function in ClickHouse SQL and curl via HTTP. These operations are directed at user-defined cluster endpoints for the purpose of migration and do not target unauthorized third-party domains. All external documentation links point to official Alibaba Cloud domains (help.aliyun.com).
[INDIRECT_PROMPT_INJECTION]: The skill ingests untrusted data in the form of SQL query results (database names, table engines, etc.) provided by the user to populate migration templates. While it lacks explicit sanitization for this data, the outcome is a generated document (assets/migration-plan-template.md) intended for human review rather than autonomous execution, significantly mitigating the risk.

alibabacloud-cksync-plan