ln-783-container-launcher
Pass
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill directs the agent to perform Docker operations such as building images and managing containers, which are high-privilege tasks. These actions are aligned with the skill's core purpose.\n- [EXTERNAL_DOWNLOADS]: The diagram.html file fetches the Mermaid.js library from the JSDelivr CDN (cdn.jsdelivr.net), a well-known service, to render workflow diagrams.\n- [PROMPT_INJECTION]: The skill exhibits an attack surface for indirect prompt injection via the processing of docker-compose.yml files.\n
- Ingestion points: Reads and parses external YAML configuration files.\n
- Boundary markers: Lacks explicit markers to separate data from instructions.\n
- Capability inventory: Executes high-privilege Docker commands and network probes based on configuration content.\n
- Sanitization: Does not specify validation or sanitization routines for the configuration data.
Audit Metadata