python-containers
Pass
Audited by Gen Agent Trust Hub on Apr 14, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a technical resource for Docker optimization, providing standard templates for various Python frameworks and package managers.
- [SAFE]: It promotes security hardening by instructing users to create and use non-root accounts (
appuser) within containers. - [SAFE]: Includes a robust
.dockerignoretemplate that explicitly prevents sensitive files (like.envand.git) from being included in the container build. - [SAFE]: Recommends the use of security tools such as
pip-auditto scan for vulnerabilities in dependencies. - [SAFE]: References to external infrastructure, such as Google Container Registry (
gcr.io) for distroless images, involve well-known and trusted services.
Audit Metadata