docker-impl-production
Pass
Audited by Gen Agent Trust Hub on Apr 9, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides thorough documentation on Docker security best practices, such as running containers as non-root users, implementing health checks, and handling signals correctly using exec form ENTRYPOINTs.
- [EXTERNAL_DOWNLOADS]: Dockerfile templates in the skill reference well-known base images from official and trusted sources, including Docker Hub (alpine, node, python, golang, debian, ubuntu, rust), Google Container Registry (gcr.io/distroless), and Microsoft Container Registry (mcr.microsoft.com/dotnet).
- [COMMAND_EXECUTION]: The skill includes common build and initialization commands (e.g., package management, user creation, file ownership) within the context of illustrative Dockerfile templates, which is standard for the skill's educational purpose.
- [CREDENTIALS_UNSAFE]: The skill explicitly warns against hardcoding secrets in image layers and uses a mock credential (sk-production-secret-key) in an anti-pattern example to demonstrate unsafe practices.
Audit Metadata