Skills
skills/zeabur/zeabur-claude-plugin/zeabur-dockerfile/Gen Agent Trust Hub

zeabur-dockerfile

Pass

Audited by Gen Agent Trust Hub on Apr 13, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTIONDATA_EXFILTRATION
Full Analysis
  • [SAFE]: The skill provides structured templates for Dockerfile generation across multiple languages and frameworks.
  • [EXTERNAL_DOWNLOADS]: The PHP template downloads the docker-php-extension-installer from GitHub. This is a recognized and widely used community utility.
  • [COMMAND_EXECUTION]: The skill instructs the agent to run deployment commands using the vendor's own CLI tool via npx zeabur@latest.
  • [PROMPT_INJECTION]: The skill involves reading project configuration files (e.g., package.json, requirements.txt) which represents a surface for indirect prompt injection if those files contain malicious instructions.
  • [DATA_EXFILTRATION]: Local project files are accessed solely to determine deployment configuration; there is no evidence of unauthorized data transfer.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 13, 2026, 06:05 PM