constructive-deployment
Pass
Audited by Gen Agent Trust Hub on Mar 2, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches Docker images from
ghcr.io/constructive-io/docker/postgres-plus:17andminio/minio. These are official vendor and well-known service repositories. - [COMMAND_EXECUTION]: Provides instructions for executing
docker-compose,make, and the vendor-providedpgpmCLI to manage platform services and database migrations. - [CREDENTIALS_UNSAFE]: Mentions default credentials (
postgres/password) for local development containers. This is standard for local setups and is explicitly labeled for dev use only. - [SAFE]: No malicious patterns, obfuscation, or unauthorized data access were identified. The skill follows standard deployment practices for the described monorepo.
Audit Metadata