The Agent Skills Directory

[COMMAND_EXECUTION]: The skill uses the subprocess module to execute system utilities including soffice (LibreOffice) for document validation and conversion, and pdftoppm (Poppler) for generating slide thumbnails.
[COMMAND_EXECUTION]: Utilizes the Playwright library to launch a headless Chromium browser instance (chromium.launch) for rendering HTML slides during the presentation creation workflow.
[COMMAND_EXECUTION]: Invokes the git command via subprocess.run to perform word-level comparisons during the validation of tracked changes in documents.
[PROMPT_INJECTION]: Indirect prompt injection surface detected. (1) Ingestion points: Processes untrusted content from PowerPoint (.pptx) files and HTML files via scripts such as inventory.py, unpack.py, and html2pptx.js. (2) Boundary markers: Absent in the processing pipeline. (3) Capability inventory: Executes arbitrary system commands and launches a headless browser based on document processing logic. (4) Sanitization: Implements secure XML parsing via defusedxml, but does not provide specific sanitization for natural language instructions that might be embedded in the slides to influence the agent's behavior.

pptx