cloudbase
Pass
Audited by Gen Agent Trust Hub on May 1, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill provides detailed instructions for using the CloudBase CLI (
tcb) and MCP tools to manage cloud resources. These include commands for deploying cloud functions, managing databases, and configuring network settings, all of which are standard for the toolkit's purpose. - [EXTERNAL_DOWNLOADS]: The skill includes instructions to install official SDKs and dependencies from established registries like npm and PyPI (e.g.,
@cloudbase/js-sdk,cloudbase-agent-python). These are vendor-owned resources used for application building. - [DATA_EXPOSURE]: The skill adheres to security best practices by utilizing placeholders for sensitive information such as API keys and SMTP credentials. It explicitly includes warnings against hardcoding secrets.
- [REMOTE_CODE_EXECUTION]: No evidence of malicious remote script execution or dangerous code patterns was found. Deployment processes follow official cloud procedures.
- [PROMPT_INJECTION]: There are no instructions that attempt to manipulate the underlying AI model's safety protocols or override its core instructions.
Audit Metadata