docker-containerization
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references official images and tools from well-known registries, such as GitHub Container Registry (ghcr.io) for 'uv' and Google Container Registry (gcr.io) for distroless images.
- [CREDENTIALS_UNSAFE]: Includes a default placeholder password ('postgres') in a Docker Compose template example in SKILL.md.
- [SAFE]: Implements and advocates for container security hardening, such as the use of non-root users (e.g., 'USER appuser'), read-only filesystems, and avoiding the storage of secrets in environment variables or image layers via BuildKit secret mounts.
Audit Metadata