marp-slide
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFENO_CODEEXTERNAL_DOWNLOADS
Full Analysis
- No Code (SAFE): The skill is composed entirely of Markdown documentation, templates, and CSS files. There are no executable scripts (Python, JavaScript, Shell) or binaries included.
- External Downloads (SAFE): The CSS templates reference Google Fonts via fonts.googleapis.com. This is a trusted external source used for legitimate styling purposes.
- Indirect Prompt Injection (SAFE): Although the skill processes user-provided content to generate slides, it lacks access to sensitive data or dangerous system capabilities (like arbitrary command execution) that would make this an exploitable vulnerability.
- Data Exposure & Exfiltration (SAFE): No hardcoded credentials, sensitive file path access, or exfiltration patterns to untrusted domains were detected. The output is correctly directed to a standard user directory.
Audit Metadata