production-docker
Pass
Audited by Gen Agent Trust Hub on May 14, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a comprehensive guide for Docker security hardening, including templates for Dockerfiles and Docker Compose. It emphasizes critical security controls such as distroless images, non-root users (UID 65532), and layer optimization.
- [EXTERNAL_DOWNLOADS]: The templates reference official and minimal base images from well-known registries, including Docker Hub and Google Container Registry (e.g.,
node:22-slim,python:3.12-slim,gcr.io/distroless/python3-debian12). - [EXTERNAL_DOWNLOADS]: Recommends using the
aquasecurity/trivy-actionGitHub Action for automated vulnerability scanning, which is a standard industry practice from a well-known security vendor. - [COMMAND_EXECUTION]: Provides educational examples of standard Docker CLI commands (e.g.,
docker build,docker run,docker history) for auditing and building images. - [PROMPT_INJECTION]: No prompt injection patterns, safety bypasses, or adversarial instructions were detected in the skill instructions or metadata.
Audit Metadata