Skills
skills/jeremylongshore/claude-code-plugins-plus-skills/docker-compose-creator/Gen Agent Trust Hub

docker-compose-creator

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION] (LOW): The skill is granted access to the Bash and Write tools. While necessary for DevOps tasks, these capabilities allow for arbitrary command execution on the host system if the agent is successfully manipulated by a malicious request.
  • [PROMPT_INJECTION] (LOW): The skill lacks boundary markers or specific instructions to sanitize or validate user-provided data before using it in shell commands or file operations.
  • Ingestion points: User prompts and provided Docker configurations (SKILL.md).
  • Boundary markers: Absent. There are no delimiters or instructions for the agent to ignore instructions embedded within user-provided snippets.
  • Capability inventory: Access to Read, Write, Edit, Bash, and Grep across all files in the environment.
  • Sanitization: Absent. No explicit validation or escaping mechanisms are defined for processing untrusted inputs.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 05:30 PM