deployment-patterns

部署工作流、CI/CD流水线模式、Docker容器化、健康检查、回滚策略以及Web应用程序的生产就绪检查清单。

75/100

Security score

The deployment-patterns skill was audited on Mar 8, 2026 and we found 9 security issues across 4 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 192

Template literal with variable interpolation in command context

SourceSKILL.md

192

```yaml

medium line 335

Template literal with variable interpolation in command context

SourceSKILL.md

335

```bash

medium line 115

Wget to non-GitHub URL

SourceSKILL.md

115	CMD wget --no-verbose --tries=1 --spider http://localhost:3000/health \|\| exit 1

medium line 138

Wget to non-GitHub URL

SourceSKILL.md

138	HEALTHCHECK --interval=30s --timeout=3s CMD wget -qO- http://localhost:8080/health \|\| exit 1

low line 287

Access to .env file

SourceSKILL.md

287	version: process.env.APP_VERSION \|\| "unknown",

low line 363

Access to .env file

SourceSKILL.md

363	export const env = envSchema.parse(process.env);

low line 115

External URL reference

SourceSKILL.md

115	CMD wget --no-verbose --tries=1 --spider http://localhost:3000/health \|\| exit 1

low line 138

External URL reference

SourceSKILL.md

138	HEALTHCHECK --interval=30s --timeout=3s CMD wget -qO- http://localhost:8080/health \|\| exit 1

low line 164

External URL reference

SourceSKILL.md

164	HEALTHCHECK --interval=30s --timeout=3s CMD python -c "import urllib.request; urllib.request.urlopen('http://localhost:8000/health/')" \|\| exit 1

Scanned on Mar 8, 2026

View Security Dashboard