azuresql-db-container

Pass

Audited by Gen Agent Trust Hub on Jul 8, 2026

Risk Level: SAFE
Full Analysis
  • Container Management and Command Execution: The skill uses shell commands and scripts (verify.sh) to manage Docker and Podman containers. These operations follow best practices, such as dynamic port selection to avoid host conflicts and conditional platform flags for cross-architecture support. These commands are integral to the skill's purpose of managing a local database environment.
  • Secret Management Practices: The instructions correctly advise users to manage sensitive information, such as the MSSQL_SA_PASSWORD, using environment variables rather than hardcoding them in application code. While examples use a placeholder password (YourStr0ng_Passw0rd), the documentation emphasizes the requirement for complex passwords to satisfy engine security policies.
  • Registry and Image Security: The skill references a specific Azure Container Registry (sqldbpreview-dpgaeqhmgphzd4bk.azurecr.io) for the Private Preview image. It provides clear instructions for secure authentication via docker login and directs users to an official aka.ms signup page to obtain their own pull-only credentials, preventing the redistribution of secrets.
  • Network and Connection Security: Connection examples for various drivers and ORMs utilize the TrustServerCertificate=true parameter, which is a standard requirement for connecting to development containers using self-signed certificates. The skill maintains a focus on local development safety by targeting localhost and container-internal networking.
Audit Metadata
Risk Level
SAFE
Analyzed
Jul 8, 2026, 04:22 AM
Security Audit — agent-trust-hub — azuresql-db-container