detect-docker-antipatterns
Pass
Audited by Gen Agent Trust Hub on Mar 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides documentation and patterns for identifying Dockerfile best practices. It does not execute remote code, access sensitive files, or attempt to bypass safety guidelines.
- [SAFE]: The provided code snippets are for educational purposes and demonstrate how to improve Docker image security and efficiency, such as pinning versions, cleaning up package caches, and excluding sensitive files using
.dockerignore. - [SAFE]: The tool uses static grep patterns to analyze project files for common configuration issues without executing the content of those files.
Audit Metadata