container-orchestration
Pass
Audited by Gen Agent Trust Hub on Apr 10, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides documentation, templates, and a build script that follow security best practices, such as multi-stage builds, non-root user execution, and proper layer management for Docker images.
- [SAFE]: The provided build script
scripts/build-push.shhandles arguments and environment variables with proper shell quoting to prevent command injection vulnerabilities. - [SAFE]: All credentials present in the reference manifests and configuration files (e.g.,
references/k8s-manifests.mdandassets/docker-compose.template.yml) are explicitly dummy placeholders used for instructional purposes. - [SAFE]: The skill recommends using minimal and hardened base images, such as Google's distroless images, to reduce the attack surface of containers.
Audit Metadata