docx
Pass
Audited by Gen Agent Trust Hub on Feb 25, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- Runtime Compilation and Library Shimming: The skill includes a utility that compiles a small C helper at runtime. This helper is used as an LD_PRELOAD shim to allow LibreOffice to function correctly in environments where standard socket operations might be restricted. This technical implementation is localized and specifically designed for environmental compatibility.
- External Command Execution: The skill integrates with system utilities including LibreOffice (soffice), Pandoc, Git, and Poppler. These tools are used for document conversion, tracked changes management, text extraction, and generating page previews.
- Dynamic Macro Generation: To automate document tasks, the skill generates and executes LibreOffice Basic macros. These are created dynamically to perform specific operations like accepting all tracked changes within a document.
- Secure XML Processing: The skill consistently uses the
defusedxmllibrary for parsing document components. This is a recognized best practice that helps protect the system from common XML-based security considerations like external entity expansion.
Audit Metadata