Skills
skills/cinience/alicloud-skills/alicloud-observability-sls-log-query/Gen Agent Trust Hub

alicloud-observability-sls-log-query

Pass

Audited by Gen Agent Trust Hub on Mar 11, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill requires the aliyun-log-python-sdk package, which is the official library provided by Alibaba Cloud for interacting with their Log Service API.
  • [PROMPT_INJECTION]: The skill exposes an indirect prompt injection surface by fetching external log data that could contain instructions targeted at the agent.
  • Ingestion points: scripts/query_logs.py and scripts/troubleshoot.py fetch log data through the LogClient.get_logs method.
  • Boundary markers: Absent. The logs are printed to standard output in raw JSON format without any delimiters or context-isolation instructions for the consuming agent.
  • Capability inventory: Low risk. The skill is limited to making API read requests and printing output. It does not possess capabilities for file system modification, shell command execution, or arbitrary network exfiltration.
  • Sanitization: Absent. No filtering or escaping is applied to the log contents before they are displayed.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 11, 2026, 10:15 AM