Container Image Optimizer
Pass
Audited by Gen Agent Trust Hub on Apr 12, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [SAFE]: The skill prioritizes security best practices, such as running as a non-root user, pinning base image versions, and providing instructions for SBOM generation and image signing.
- [COMMAND_EXECUTION]: The skill generates shell commands intended for use in Dockerfiles and build automation scripts. These commands are localized to the container build environment and follow standard development workflows for application containerization.
- [EXTERNAL_DOWNLOADS]: The skill references and fetches configurations from established security projects and base image providers, including Trivy, Grype, Syft, and Google's Distroless repository. These external references are used to enhance the security posture of the generated container images.
Audit Metadata