dockerfile-skill

SUSPICIOUS: the core Dockerfile-generation behavior is coherent, and there is no clear credential theft or malicious installer path. However, the skill has a large execution footprint: it can clone arbitrary GitHub repos, analyze untrusted content, write multiple files, run iterative docker builds, launch services, query databases, and auto-generate secret-bearing env files with minimal user interaction. That makes it a high-impact but purpose-aligned automation skill with notable indirect prompt-injection and autonomous execution risk rather than confirmed malware.