alicloud-ai-audio-asr
Pass
Audited by Gen Agent Trust Hub on Mar 27, 2026
Risk Level: SAFE
Full Analysis
- [CREDENTIALS_UNSAFE]: The script
scripts/transcribe_audio.pyretrieves thedashscope_api_keyfrom the environment or the standard Alibaba Cloud credentials file at~/.alibabacloud/credentials. This is the documented and expected practice for authenticating with Alibaba Cloud services. - [DATA_EXFILTRATION]: The skill transmits audio data to
dashscope.aliyuncs.comfor processing. It also retrieves results from temporary URLs provided by the API in asynchronous mode. These network operations are necessary for the skill's core functionality and target official service endpoints. - [COMMAND_EXECUTION]: The skill's validation procedure involves running
python -m py_compileon the helper script. This is a standard local syntax check to ensure the script is ready for execution.
Audit Metadata