Skills
skills/zeabur/agent-skills/zeabur-dockerfile/Gen Agent Trust Hub

zeabur-dockerfile

Pass

Audited by Gen Agent Trust Hub on Apr 10, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill mandates the use of npx zeabur@latest to invoke the Zeabur CLI for deployment tasks, which executes code from the npm registry.
  • [EXTERNAL_DOWNLOADS]: The PHP Dockerfile template fetches the install-php-extensions script from a well-known community repository on GitHub (mlocati/docker-php-extension-installer).
  • [PROMPT_INJECTION]: The skill analyzes untrusted project manifest files such as package.json, requirements.txt, and composer.json to dynamically generate build and execution instructions, creating a surface for indirect prompt injection where malicious content in these files could influence the agent's output.
  • Ingestion points: Reads local project configuration and dependency manifest files as part of the analysis workflow.
  • Boundary markers: None are specified to separate untrusted file content from the agent's instructions.
  • Capability inventory: Executes CLI commands via npx and generates executable configuration files for container environments.
  • Sanitization: No explicit validation or sanitization of the data read from project files is documented.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 10, 2026, 06:20 AM