dotnet-container-deployment
Pass
Audited by Gen Agent Trust Hub on Mar 7, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill follows security best practices for container orchestration and CI/CD.
- [SAFE]: Kubernetes manifests use
runAsNonRootandsecurityContextto minimize container privileges, which is a recommended security hardening measure. - [SAFE]: Documentation explicitly warns against hardcoding sensitive information in production and recommends external secret management tools like External Secrets Operator or Sealed Secrets.
- [SAFE]: External dependencies, including GitHub Actions and Docker base images (e.g., Postgres, Redis, Grafana), are sourced from official or well-known trusted providers.
- [SAFE]: The inclusion of a "Agent Gotchas" section reinforces secure implementation by warning against common mistakes like using the
latesttag or hardcoding credentials.
Audit Metadata