Skills
skills/aaaaqwq/agi-super-team/pptx/Gen Agent Trust Hub

pptx

Pass

Audited by Gen Agent Trust Hub on Mar 13, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses subprocess.run to call system binaries soffice (for document validation and conversion), pdftoppm (for image extraction), and git (for word-level diffing). These operations are restricted to document processing tasks aligned with the skill's primary purpose.
  • [SAFE]: Robust XML security is implemented in ooxml/scripts/unpack.py and ooxml/scripts/pack.py by utilizing defusedxml to prevent XML External Entity (XXE) vulnerabilities.
  • [SAFE]: While the skill ingests user-provided PPTX and HTML data (ingestion points in scripts/inventory.py and scripts/html2pptx.js), the processing is limited to structural extraction and layout rendering. No boundary-crossing logic or instruction-overriding markers were detected.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 13, 2026, 07:00 AM