aliyun-wan-animate-move
Pass
Audited by Gen Agent Trust Hub on Apr 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill uses standard environment variables (
DASHSCOPE_API_KEY) and configuration files (~/.alibabacloud/credentials) for managing credentials, which is a recommended security practice. It does not hardcode any secrets. - [SAFE]: All network operations are directed to official Alibaba Cloud endpoints (
dashscope.aliyuncs.comanddashscope-intl.aliyuncs.com). - [SAFE]: The Python scripts perform standard API requests using the
requestslibrary. There is no evidence of arbitrary command execution, privilege escalation, or persistence mechanisms. - [SAFE]: The documentation clearly outlines prerequisites and expected behaviors without any attempt to bypass safety guidelines or inject malicious instructions.
Audit Metadata