containers
Pass
Audited by Gen Agent Trust Hub on Apr 7, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill focuses entirely on security-hardened container configurations, establishing non-root execution, dropped capabilities, and read-only filesystems as mandatory defaults.
- [EXTERNAL_DOWNLOADS]: Mentions well-known and official images such as Alpine, Postgres, Caddy, and Google's Distroless for multi-stage builds and debugging. These are standard industry resources used as implementation examples.
- [COMMAND_EXECUTION]: Includes common Docker and Podman CLI commands for troubleshooting and management. All provided commands are aligned with legitimate administrative tasks and development workflows.
- [PROMPT_INJECTION]: Instructions are designed to improve output quality and security compliance; no attempts to bypass safety filters or override core agent behavior were detected.
- [DATA_EXFILTRATION]: No patterns for unauthorized data access or transmission were identified. The skill correctly instructs the agent to manage secrets via mounted files rather than insecure environment variables.
Audit Metadata