nextcloud
Pass
Audited by Gen Agent Trust Hub on Mar 18, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill documents the use of the
occCLI tool for administrative tasks such as system status checks, upgrades, and user management. These commands are standard for Nextcloud administration and are correctly instructed to run under the non-privilegedwww-datauser. - [EXTERNAL_DOWNLOADS]: The provided
docker-compose.ymlreference specifies official Docker images for Nextcloud, MariaDB, Redis, and Nginx. These images are sourced from well-known, trusted organizations on Docker Hub. - [CREDENTIALS_UNSAFE]: Secret management in the
docker-compose.ymlfile is handled via environment variable placeholders (e.g.,${MYSQL_PASSWORD}) rather than hardcoded strings, which is a recommended security practice for configuration templates. - [SAFE]: All external documentation links in
references/docs.mdpoint to the officialnextcloud.comdomain or verified official GitHub repositories (github.com/nextcloud).
Audit Metadata