convert-to-apple-container
Facilitates switching from Docker to Apple Container for macOS, ensuring native container isolation and compatibility.
Install this skill
or
65/100
Security score
The convert-to-apple-container skill was audited on May 14, 2026 and we found 7 security issues across 1 threat category. Review the findings below before installing.
Categories Tested
Security Issues
medium line 16
Access to .env file
SourceSKILL.md
| 16 | - Dockerfile entrypoint: `.env` shadowing via `mount --bind` inside the container (Apple Container only supports directory mounts, not file mounts like Docker's `/dev/null` overlay) |
medium line 77
Access to .env file
SourceSKILL.md
| 77 | - Updates `src/container-runner.ts` with .env shadow mount fix and privilege dropping |
medium line 78
Access to .env file
SourceSKILL.md
| 78 | - Updates `container/Dockerfile` with entrypoint that shadows .env via `mount --bind` |
medium line 84
Access to .env file
SourceSKILL.md
| 84 | - `modify/src/container-runner.ts.intent.md` — .env shadow and privilege drop changes |
medium line 85
Access to .env file
SourceSKILL.md
| 85 | - `modify/container/Dockerfile.intent.md` — entrypoint changes for .env shadowing |
medium line 181
Access to .env file
SourceSKILL.md
| 181 | | `src/container-runner.ts` | .env shadow mount removed, main containers start as root with privilege drop | |
medium line 182
Access to .env file
SourceSKILL.md
| 182 | | `container/Dockerfile` | Entrypoint: `mount --bind` for .env shadowing, `setpriv` privilege drop | |
Scanned on May 14, 2026
View Security Dashboard