aliyun-platform-docs-benchmark
Pass
Audited by Gen Agent Trust Hub on Apr 4, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill's benchmarking script fetches documentation metadata and page content from several well-known services and trusted sources, including GitHub (api.github.com), Google Cloud (discovery.googleapis.com), and Alibaba Cloud (api.aliyun.com). It also utilizes DuckDuckGo for documentation discovery.
- [COMMAND_EXECUTION]: The skill executes a Python script (
benchmark_multicloud_docs_api.py) to perform its primary function. The script is well-structured, uses standard libraries, and includes security-conscious logic such as enforcinghttp(s)protocols and domain constraints for discovered links. - [DATA_EXFILTRATION]: While the skill instructions advise configuring Alibaba Cloud credentials via environment variables for cloud-related tasks, the analyzed scripts do not access, store, or transmit these credentials to external entities.
- [PROMPT_INJECTION]: No malicious prompt injection patterns, role-play bypasses, or instructions to ignore safety guidelines were detected in the skill metadata or instructions.
Audit Metadata