阿里云安全中心SAS管理：OpenAPI与SDK操作指南，自动化安全运维

alicloud-security-center-sas by cinience/alicloud-skills

240 周安装量

364 GitHub Stars

GitHub

安装命令

npx skills add https://github.com/cinience/alicloud-skills --skill alicloud-security-center-sas

自动化云服务安全

🇨🇳中文介绍

Category: service

安全中心

使用阿里云 OpenAPI (RPC) 配合官方 SDK 或 OpenAPI Explorer 来管理安全中心的资源。

工作流程

确认区域、资源标识符和期望的操作。
发现 API 列表和必需参数（参见参考资料）。
使用 SDK 或 OpenAPI Explorer 调用 API。
使用 describe/list 类 API 验证结果。

AccessKey 优先级（必须遵守）

环境变量：ALICLOUD_ACCESS_KEY_ID / ALICLOUD_ACCESS_KEY_SECRET / ALICLOUD_REGION_ID 区域策略：ALICLOUD_REGION_ID 是可选的默认值。如果未设置，则为任务决定最合理的区域；如果不明确，请询问用户。
共享配置文件：~/.alibabacloud/credentials

API 发现

产品代码：Sas

广告位招租

在这里展示您的产品或服务

触达数万 AI 开发者，精准高效

联系我们

最小化可执行快速入门

在调用业务 API 之前，先使用元数据优先发现：

python scripts/list_openapi_meta_apis.py

python scripts/list_openapi_meta_apis.py --product-code <ProductCode> --version <Version>

该脚本会在技能输出目录下写入 API 清单工件。

如果需要保存响应或生成的工件，请将其写入：output/alicloud-security-center-sas/

mkdir -p output/alicloud-security-center-sas
for f in skills/security/host/alicloud-security-center-sas/scripts/*.py; do
  python3 -m py_compile "$f"
done
echo "py_compile_ok" > output/alicloud-security-center-sas/validate.txt

通过标准：命令退出码为 0 且生成 output/alicloud-security-center-sas/validate.txt 文件。

将工件、命令输出和 API 响应摘要保存在 output/alicloud-security-center-sas/ 目录下。
在证据文件中包含关键参数（区域/资源 ID/时间范围）以确保可复现性。

在执行前配置最小权限的阿里云凭据。
优先使用环境变量：ALICLOUD_ACCESS_KEY_ID、ALICLOUD_ACCESS_KEY_SECRET，可选的 ALICLOUD_REGION_ID。
如果区域不明确，请在运行变更操作前询问用户。

来源：references/sources.md

🇺🇸English

Category: service

Security Center

Use Alibaba Cloud OpenAPI (RPC) with official SDKs or OpenAPI Explorer to manage resources for Security Center.

Workflow

Confirm region, resource identifiers, and desired action.
Discover API list and required parameters (see references).
Call API with SDK or OpenAPI Explorer.
Verify results with describe/list APIs.

AccessKey priority (must follow)

Environment variables: ALICLOUD_ACCESS_KEY_ID / ALICLOUD_ACCESS_KEY_SECRET / ALICLOUD_REGION_ID Region policy: ALICLOUD_REGION_ID is an optional default. If unset, decide the most reasonable region for the task; if unclear, ask the user.
Shared config file: ~/.alibabacloud/credentials

API discovery

Product code: Sas
Default API version: 2021-01-14
Use OpenAPI metadata endpoints to list APIs and get schemas (see references).

High-frequency operation patterns

Inventory/list: prefer List* / Describe* APIs to get current resources.
Change/configure: prefer Create* / Update* / Modify* / Set* APIs for mutations.
Status/troubleshoot: prefer Get* / Query* / Describe*Status APIs for diagnosis.

Minimal executable quickstart

Use metadata-first discovery before calling business APIs:

python scripts/list_openapi_meta_apis.py

Optional overrides:

python scripts/list_openapi_meta_apis.py --product-code <ProductCode> --version <Version>

The script writes API inventory artifacts under the skill output directory.

Output policy

If you need to save responses or generated artifacts, write them under: output/alicloud-security-center-sas/

Validation

mkdir -p output/alicloud-security-center-sas
for f in skills/security/host/alicloud-security-center-sas/scripts/*.py; do
  python3 -m py_compile "$f"
done
echo "py_compile_ok" > output/alicloud-security-center-sas/validate.txt

Pass criteria: command exits 0 and output/alicloud-security-center-sas/validate.txt is generated.

Output And Evidence

Save artifacts, command outputs, and API response summaries under output/alicloud-security-center-sas/.
Include key parameters (region/resource id/time range) in evidence files for reproducibility.

Prerequisites

Configure least-privilege Alibaba Cloud credentials before execution.
Prefer environment variables: ALICLOUD_ACCESS_KEY_ID, ALICLOUD_ACCESS_KEY_SECRET, optional ALICLOUD_REGION_ID.
If region is unclear, ask the user before running mutating operations.

References

Sources: references/sources.md

Weekly Installs

154

Repository

cinience/alicloud-skills

GitHub Stars

337

First Seen

12 days ago

Security Audits

Gen Agent Trust HubPass SocketPass SnykWarn

Installed on

gemini-cli153

github-copilot153

codex153

kimi-cli153

amp153

cursor153

Azure 升级评估与自动化工具 - 轻松迁移 Functions 计划、托管层级和 SKU

68,100 周安装