docker
Pass
Audited by Gen Agent Trust Hub on Apr 11, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill defines routine Docker operations and includes proactive security guidance, such as advising against hardcoding credentials and recommending the use of .env.template for secret management.
- [PROMPT_INJECTION]: The skill presents an indirect prompt injection surface by requiring the agent to parse local configuration files. 1. Ingestion points: .docker/Dockerfile and .env.template. 2. Boundary markers: Absent. 3. Capability inventory: Shell command execution via docker and docker-compose. 4. Sanitization: No explicit validation or escaping of external file content before interpretation.
Audit Metadata