cloudbase
Pass
Audited by Gen Agent Trust Hub on May 1, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides legitimate documentation, routing logic, and integration guides for developing on the CloudBase platform across various environments (Web, Mini Programs, Native Apps).
- [EXTERNAL_DOWNLOADS]: The skill references official vendor resources, including the CloudBase JS SDK via a verified CDN (static.cloudbase.net) and the official CloudBase MCP package (@cloudbase/cloudbase-mcp) via npx. These are documented as standard integration steps for the platform.
- [COMMAND_EXECUTION]: Provides usage examples for management tools like
mcporterand the CloudBase CLI (tcb). These commands are intended for environment configuration, authentication status checks, and deployment tasks, which are appropriate for a developer toolkit. - [CREDENTIALS_SAFE]: The skill includes a specific security warning against hardcoding Secret IDs or Keys. It promotes the use of device-code login (interactive authentication), which is a more secure practice for managing cloud resources.
- [METADATA_CONSISTENCY]: The metadata fields (name, description, author) align perfectly with the technical content and the provided scripts, with no evidence of deception or poisoning.
Audit Metadata