dockerfile-builder
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides structured templates and instructions for generating Dockerfiles based on security best practices, including the use of specific image tags instead of 'latest' to ensure build reproducibility.
- [SAFE]: No suspicious network activity, data exfiltration attempts, or obfuscation techniques were detected within the skill instructions or example outputs.
- [SAFE]: The skill promotes privilege minimization by including commands to create and switch to non-root users in production stages.
- [SAFE]: All external references, such as Docker base images (Node.js, Python, Go, Rust, Alpine) and package managers (npm, pnpm, pip, cargo), are well-known and standard in software development environments.
- [SAFE]: The use of multi-stage builds correctly isolates build-time dependencies from the final production image, reducing the overall attack surface.
Audit Metadata