docker
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [Command Execution] (LOW): The skill utilizes the 'Bash' tool to execute Docker commands like building images and running containers. This is standard for the skill's purpose but represents a high-capability toolset that must be used with caution.
- [Prompt Injection] (LOW): The skill presents an indirect prompt injection surface because it processes Dockerfiles and code from the workspace without explicit sanitization. Evidence: (1) Ingestion points: Dockerfiles and build contexts accessed via 'Read' and 'Glob' tools. (2) Boundary markers: None present in the instructions to distinguish between data and instructions in processed files. (3) Capability inventory: 'Bash' tool for command execution and 'Write' or 'Edit' for file manipulation. (4) Sanitization: No sanitization or validation of file content is specified.
Audit Metadata