Skills
skills/bagelhole/devops-security-agent-skills/devcontainers-nix/Gen Agent Trust Hub

devcontainers-nix

Pass

Audited by Gen Agent Trust Hub on Mar 27, 2026

Risk Level: SAFEREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [REMOTE_CODE_EXECUTION]: Fetches and executes the OpenTofu installer script from its official domain get.opentofu.org. This is the standard, documented method for standalone installation of the tool.
  • [REMOTE_CODE_EXECUTION]: Fetches and executes the Devbox installer from the official Jetify domain get.jetify.com. This command is the primary installation vector for the Devbox toolchain manager.
  • [EXTERNAL_DOWNLOADS]: Downloads container images from Microsoft's Container Registry (mcr.microsoft.com), container features from GitHub's registry (ghcr.io), and binaries from the official Kubernetes release site (dl.k8s.io). These are legitimate resources from well-known technology providers.
  • [COMMAND_EXECUTION]: Provides instructions for running standard development commands like npm install, nix develop, and apt-get install to manage dependencies and build tools within the development environment.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 27, 2026, 02:05 PM