docker-environments
Pass
Audited by Gen Agent Trust Hub on Jul 15, 2026
Risk Level: SAFE
Full Analysis
- [DATA_EXFILTRATION]: The skill provides instructions for managing a sensitive
FIGMA_ACCESS_TOKEN. It adheres to security best practices by explicitly warning against hardcoding the token and recommending the use of environment variables or Docker secrets. - [EXTERNAL_DOWNLOADS]: The skill references the author's repository at
https://github.com/sarveshsea/memias the source for tool functionality. This resource belongs to the skill's author and is documented neutrally. - [COMMAND_EXECUTION]: The skill details the use of standard container commands, such as
docker composeandnpm ci, for managing dependencies and running design system tasks in isolated environments. - [DATA_EXFILTRATION]: The skill describes a surface for processing local project configuration files to adapt its behavior. 1. Ingestion points: Detects and reads
Dockerfile,docker-compose.yml, and.devcontainer/files from the project root. 2. Boundary markers: No explicit boundary markers or 'ignore' instructions are specified in the guide for these files. 3. Capability inventory: The tool possesses capabilities for code generation, spec validation, and network synchronization. 4. Sanitization: No explicit sanitization or validation of the ingested Docker configuration files is described in this configuration guide.
Audit Metadata