docker
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security threats detected. The skill provides high-quality reference documentation for Docker best practices within a monorepo structure.
- [COMMAND_EXECUTION]: Provides standard Docker CLI commands for container management (e.g.,
docker compose up,docker stats); these are for local administrative use and do not contain malicious payloads or unintended command injection. - [CREDENTIALS_UNSAFE]: Environment variables in Docker Compose files correctly use placeholders and safe default values (e.g.,
${POSTGRES_USER:-myapp}) rather than hardcoding sensitive production secrets. - [EXTERNAL_DOWNLOADS]: Reference files suggest using official images from Docker Hub (e.g.,
node:22-alpine,postgres:16-alpine), which are well-known and trusted sources for base images.
Audit Metadata