Skills
skills/pjt222/development-guides/setup-docker-compose/Gen Agent Trust Hub

setup-docker-compose

Pass

Audited by Gen Agent Trust Hub on Feb 27, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses the Bash tool to execute standard Docker lifecycle commands including docker compose build, docker compose up, and docker compose exec. These operations are essential to the skill's primary purpose of environment orchestration.
  • [PROMPT_INJECTION]: Potential for Indirect Prompt Injection.
  • Ingestion points: The skill reads a user-provided Dockerfile (Step 1) and project directory (Step 4) to build and configure the environment.
  • Boundary markers: No explicit delimiters or instructions are provided to the agent to ignore potentially malicious instructions embedded within the processed Dockerfile or environment files.
  • Capability inventory: The skill utilizes Bash and Write capabilities to construct and execute the environment configuration based on these external files.
  • Sanitization: No sanitization or validation of the input file content is performed before interpolation into the build process.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 27, 2026, 10:52 PM