slack-gif-creator
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS] (SAFE): The skill utilizes standard image processing libraries (pillow, imageio, numpy) as defined in the requirements.txt. No untrusted third-party binaries or scripts are fetched at runtime.\n- [COMMAND_EXECUTION] (SAFE): No instances of subprocess spawning, os.system calls, or other command-line execution patterns were found in the source files.\n- [DATA_EXFILTRATION] (SAFE): The skill lacks network capabilities and does not access sensitive system paths (like ~/.ssh or ~/.aws). All data processing is confined to local image manipulation.\n- [INDIRECT_PROMPT_INJECTION] (LOW): The skill provides an interface for processing user-uploaded images via PIL.Image.open as noted in SKILL.md. \n
- Ingestion points: User-provided image files handled in SKILL.md and potentially core/gif_builder.py.\n
- Boundary markers: None present.\n
- Capability inventory: Limited to PIL-based image drawing and file writing to specified output paths.\n
- Sanitization: Relies on standard PIL library validation during image opening.\n- [PROMPT_INJECTION] (SAFE): The instructions in SKILL.md focus purely on technical usage and do not contain patterns designed to override agent safety protocols or reveal system prompts.
Audit Metadata