docker-expert
Pass
Audited by Gen Agent Trust Hub on Apr 14, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes standard system commands including docker info, docker ps, and find to gather necessary context about the Docker environment and project structure for its analysis tasks.
- [PROMPT_INJECTION]: The skill instructions involve reading and processing user-provided configuration files like Dockerfiles, which represents a surface for indirect prompt injection, though it is utilized here for legitimate technical consultation and optimization.
- [EXTERNAL_DOWNLOADS]: The skill mentions using Docker Scout for vulnerability scanning and references official base images from Docker Hub and Google Container Registry, all of which are recognized as well-known and trusted services.
Audit Metadata