Alicloud Ai Search Dashvector
Security checks across malware telemetry and agentic risk
Overview
This skill is a straightforward Alibaba Cloud DashVector helper that clearly discloses its credentials and vector database operations.
Use a scoped DashVector API key, confirm the endpoint and collection name before running mutating actions, and test the quickstart against a non-production or intended collection. Avoid uploading sensitive documents or embeddings unless that data is approved for storage in the target DashVector cluster, and consider pinning the dashvector package version for production use.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
61/61 vendors flagged this skill as clean.