Alibabacloud Cms Manage

Security checks across malware telemetry and agentic risk

Overview

The skill is mostly coherent for managing Alibaba Cloud monitoring, but it can automatically update/install local CLI components and alter persistent CLI settings without clearly requiring user approval.

Install only if you trust the publisher and intend to let an agent manage Alibaba Cloud monitoring from your configured aliyun profiles. Before use, require explicit approval for CLI upgrades, curl-based installers, plugin updates, destructive cloud operations, and Kubernetes changes; prefer a least-privilege Alibaba Cloud profile.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The skill instructs automatic CLI upgrade and, if unavailable, a fallback that installs software and modifies the host without an explicit user-facing warning or confirmation. In an agent context, this can lead to unreviewed system changes, supply-chain exposure, and execution of privileged installer logic on the user's machine.

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The AI-Mode sequence changes persistent CLI configuration and updates plugins before and after business commands, but the skill does not warn the user that it is altering local settings and installed components. In a security-sensitive CLI environment, hidden configuration drift and plugin updates can change behavior across future sessions and expand supply-chain risk.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal