create-pptx
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes external system commands including soffice (LibreOffice) for PDF conversion and pdftoppm (Poppler) for slide image generation. It also executes local Python scripts (scripts/thumbnail.py, scripts/office/unpack.py, scripts/office/pack.py) for XML manipulation and visual processing.\n- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection through its document processing workflows.\n
- Ingestion points: The skill ingests content from external PowerPoint (.pptx) files using the markitdown library and custom XML extraction scripts.\n
- Boundary markers: No boundary markers or "ignore instructions" warnings are used to delimit the extracted text content from the agent's instructions.\n
- Capability inventory: The skill possesses capabilities to execute shell commands, run local scripts, and write files to the local file system.\n
- Sanitization: There is no evidence of sanitization or filtering of the extracted presentation text before it is returned to the agent's context.
Audit Metadata