container-registry-management
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements standard infrastructure-as-code and shell scripts for container registry management. All provided examples follow security best practices such as enabling image scanning on push, using KMS encryption, and implementing least-privilege IAM policies.
- [COMMAND_EXECUTION]: The provided bash scripts for ECR setup, image scanning, and build/push operations use standard AWS CLI and Docker commands. Input variables are handled using standard shell quoting to prevent accidental execution issues.
- [CREDENTIALS_UNSAFE]: No sensitive credentials or API keys are hardcoded. The AWS account IDs (123456789012) and KMS keys used in the examples are standard placeholders commonly found in official AWS documentation.
Audit Metadata