Skills
skills/qwencloud/qwencloud-ai/qwencloud-ops-auth/Gen Agent Trust Hub

qwencloud-ops-auth

Pass

Audited by Gen Agent Trust Hub on Mar 30, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSCREDENTIALS_UNSAFE
Full Analysis
  • [COMMAND_EXECUTION]: Uses curl to verify API keys against the official Alibaba Cloud DashScope endpoints.
  • [COMMAND_EXECUTION]: Executes shell commands to create .env files and set environment variables as part of the setup process.
  • [EXTERNAL_DOWNLOADS]: Downloads and installs the qwencloud-update-check skill from the official QwenCloud repository using npx.
  • [COMMAND_EXECUTION]: Runs local Python scripts (check_update.py, gossamer.py) for managing updates and tool state.
  • [CREDENTIALS_UNSAFE]: Interacts with sensitive API keys and OSS credentials. The skill implements security best practices by instructing the agent to never output keys in plaintext and to use environment-based storage.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 30, 2026, 03:04 AM