alicloud-fc
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill documentation specifies dependencies on official Alibaba Cloud SDK packages including @alicloud/fc20230330, @alicloud/openapi-core, and @darabonba/typescript. These are well-known and trusted libraries for cloud infrastructure management.
- [SAFE]: Analysis of the 15 files in the skill reveals no security threats. The client initialization in scripts/setup_client.ts correctly uses environment variables for sensitive credentials (ALIBABA_CLOUD_ACCESS_KEY_ID/SECRET) rather than hardcoding them. All network interactions are performed through legitimate SDK methods targeting official Alibaba Cloud API endpoints. No evidence of prompt injection, obfuscation, persistence mechanisms, or unauthorized dynamic execution was found.
Audit Metadata