aliyun-fc-serverless-devs
Pass
Audited by Gen Agent Trust Hub on Apr 4, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: Installs the @serverless-devs/s package from the official npm registry. This is the legitimate CLI tool provided by Alibaba Cloud for serverless deployments.
- [COMMAND_EXECUTION]: Provides instructions for using sudo to install and run the Serverless Devs CLI. While using sudo for CLI operations requires care, it is a standard approach for global npm package installation and system-level cloud resource management.
- [CREDENTIALS_UNSAFE]: The skill guides users through the configuration of Alibaba Cloud credentials (AccountID, AccessKeyID, and AccessKeySecret). It appropriately uses placeholders and suggests the use of environment variables, following standard practices for secret management without hardcoding sensitive data.
Audit Metadata