devcontainer-setup
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The install.sh script downloads installation components for uv from Astral's official domain (astral.sh), Claude Code from Anthropic (claude.ai), and Cortex Code from Snowflake (ai.snowflake.com). These are well-known technology providers and the downloads are part of the intended setup process.
- [REMOTE_CODE_EXECUTION]: The skill uses piped shell execution (curl | bash or curl | sh) to install developer tools. This is documented as the official installation method for the requested tools (uv, Claude Code, Cortex Code) and targets well-known service domains.
- [COMMAND_EXECUTION]: The setup script performs standard system administration tasks within the container, including installing system packages (ripgrep), creating environment-specific scripts in /usr/local/bin, and configuring user shell environment variables in .bashrc and .zshrc.
- [DATA_EXFILTRATION]: The devcontainer configuration defines bind mounts that map local host directories (such as ~/.snowflake, ~/.claude, and ~/.m2) to the container. This exposure is intentional and necessary for the tools to utilize existing user configurations and authentication tokens.
Audit Metadata