The Agent Skills Directory

[SAFE]: The skill follows security best practices for document handling and XML processing.
[COMMAND_EXECUTION]: Analysis of ooxml/scripts/pack.py and ooxml/scripts/validation/redlining.py identified the use of subprocess.run to call soffice (for document validation) and git (for tracked changes comparison). These calls are benign as they are tied to the primary purpose of the skill and do not use shell=True or incorporate unsanitized user input into the command strings.
[EXTERNAL_DOWNLOADS]: The documentation identifies standard dependencies such as pandoc, libreoffice, and poppler-utils. These are expected utilities for document conversion and image extraction and are to be installed via official package managers.
[DATA_EXFILTRATION]: No network operations or data transmission patterns to external domains were detected. All file processing is performed locally within the environment.
[PROMPT_INJECTION]: The instructions provided in SKILL.md and related technical guides are purely functional and do not contain any attempts to override model constraints or bypass safety protocols.

docx