Skills
skills/cinience/alicloud-skills/aliyun-sls-log-query/Gen Agent Trust Hub

aliyun-sls-log-query

Pass

Audited by Gen Agent Trust Hub on Apr 5, 2026

Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [PROMPT_INJECTION]: Potential for Indirect Prompt Injection through processed log data.
  • Ingestion points: scripts/query_logs.py and scripts/troubleshoot.py fetch log data from external Alibaba Cloud SLS logstores via the get_logs API call.
  • Boundary markers: Absent. The retrieved log contents are converted to JSON and printed directly to stdout, where the agent processes them without explicit delimiters or instructions to ignore embedded commands.
  • Capability inventory: The skill has the ability to execute Python scripts, make network calls via the aliyun-log-python-sdk, and write to the filesystem during validation.
  • Sanitization: No sanitization or validation is applied to the log content before it is presented to the agent.
  • [EXTERNAL_DOWNLOADS]: Fetches the official aliyun-log-python-sdk from the public Python Package Index (PyPI) to facilitate interaction with Alibaba Cloud services.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 5, 2026, 05:57 AM