Aliyun Qvq
Security checks across static analysis, malware telemetry, and agentic risk
Overview
This skill appears benign: it documents Alibaba QVQ visual-reasoning use and includes only a small local script that writes a sample request JSON file.
This skill is low risk based on the provided artifacts. It does not actually call Alibaba Cloud or handle API keys; if you extend it to make real QVQ API calls, review any added credential, image-upload, and network-handling behavior.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
No visible risk-analysis findings were reported for this release.