container-security-skill
Pass
Audited by Gen Agent Trust Hub on Apr 27, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill documents procedures for downloading established DevOps utilities (e.g., k9s, ArgoCD, yq, and kustomize) from official GitHub repositories. These downloads are performed as part of the container hardening process and use secure transport (HTTPS).
- [COMMAND_EXECUTION]: It utilizes standard tools including the Azure CLI (
az acr) for image registry management and the Trivy scanner for identifying vulnerabilities. These commands are intended to be executed within the user's authenticated environment to improve the security posture of their infrastructure. - [SAFE]: No malicious patterns, such as credential exfiltration, prompt injection, or obfuscated code, were detected. The skill promotes security-conscious behavior by recommending the use of private registries to avoid rate limits and ensuring that binaries are downloaded from trusted sources.
Audit Metadata