aliyun-docmind-extract
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches official Alibaba Cloud Node.js SDK packages (
@alicloud/docmind-api20220711,@alicloud/tea-util,@alicloud/credentials) from the public NPM registry. - [COMMAND_EXECUTION]: Executes Node.js scripts to automate the submission of documents to the DocMind API and poll for extraction results. Also includes a validation routine using
py_compilefor script verification. - [CREDENTIALS_UNSAFE]: Follows best practices by instructing the user to provide Alibaba Cloud credentials (Access Key ID and Secret) through standard environment variables rather than hardcoding them.
Audit Metadata