IPS Alert Event Analysis Skill Scope Notes: - This skill is designed to use Aliyun CLI commands as its primary data source. - It does not depend on local log files, SIEM exports, or direct host access. - It does not require SSH or direct connections to server IPs. - For IP-focused investigations, prefer with or . Scenario Description Query and analyze IPS (Intrusion Prevention System) security events and alerts detected by Alibaba Cloud Firewall, helping quickly locate threats and provide remediation recommendations. Architecture : Capability Level : Query (read-only) Data Source : All data i…