azuresql-db-container
Pass
Audited by Gen Agent Trust Hub on Jul 8, 2026
Risk Level: SAFE
Full Analysis
- Container Management and Command Execution: The skill uses shell commands and scripts (
verify.sh) to manage Docker and Podman containers. These operations follow best practices, such as dynamic port selection to avoid host conflicts and conditional platform flags for cross-architecture support. These commands are integral to the skill's purpose of managing a local database environment. - Secret Management Practices: The instructions correctly advise users to manage sensitive information, such as the
MSSQL_SA_PASSWORD, using environment variables rather than hardcoding them in application code. While examples use a placeholder password (YourStr0ng_Passw0rd), the documentation emphasizes the requirement for complex passwords to satisfy engine security policies. - Registry and Image Security: The skill references a specific Azure Container Registry (
sqldbpreview-dpgaeqhmgphzd4bk.azurecr.io) for the Private Preview image. It provides clear instructions for secure authentication viadocker loginand directs users to an officialaka.mssignup page to obtain their own pull-only credentials, preventing the redistribution of secrets. - Network and Connection Security: Connection examples for various drivers and ORMs utilize the
TrustServerCertificate=trueparameter, which is a standard requirement for connecting to development containers using self-signed certificates. The skill maintains a focus on local development safety by targetinglocalhostand container-internal networking.
Audit Metadata