container-scan-trivy
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill utilizes the
trivycommand-line tool to perform security audits. The execution patterns are standard for the tool's intended use case. - [EXTERNAL_DOWNLOADS] (SAFE): The skill references standard package managers (
brew,apt) for installation, which are considered trusted sources. - [INDIRECT_PROMPT_INJECTION] (LOW): The skill ingests data from external scan results (
trivy-results.json). While this represents a data ingestion surface, the risk is inherent to the tool's purpose of analyzing external artifacts, and no specific exploit patterns are present. - Ingestion points:
trivy-results.jsonoutput file. - Boundary markers: Not explicitly defined in the parsing instructions.
- Capability inventory: Execution of
trivyvia shell. - Sanitization: The instructions assume structured JSON parsing, which naturally mitigates many simple text-based injection risks.
Audit Metadata