docker-best-practices
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- Indirect Prompt Injection (LOW): The skill is intended to review or write Dockerfiles and container configurations provided by users, which constitutes an ingestion surface for untrusted data.
- Ingestion points: User-provided Dockerfiles, container configurations, and docker-compose files.
- Boundary markers: None explicitly defined in the markdown content.
- Capability inventory: None. This skill contains no executable scripts or tools; it is a purely informational reference.
- Sanitization: Not applicable as no code is executed.
- Unverifiable Dependencies (SAFE): While the skill mentions packages like
flaskand Node.js dependencies in its examples, these are used for illustrative purposes. It specifically recommends best practices such as version pinning and using official, trusted base images. - Privilege Escalation (SAFE): The skill explicitly instructs against privilege escalation by recommending the creation and use of non-root users within container environments.
Audit Metadata