slack-gif-creator
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill implements legitimate image generation functionality. It performs local file operations for font loading and GIF saving, consistent with its stated purpose. No network requests or unauthorized file access patterns were detected.
- [PROMPT_INJECTION]: The skill processes user-controlled strings (text and emojis) for rendering into GIF frames, which constitutes an indirect prompt injection surface.
- Ingestion points: User content is ingested via the
object_dataparameters across animation templates and thetextparameter incore/typography.py. - Boundary markers: There are no explicit delimiters or instructions to ignore embedded prompts within the user-provided data.
- Capability inventory: The skill is capable of writing files to the local disk using
imageio.v3.imwritein thecore/gif_builder.pymodule. - Sanitization: Input content is rendered as static graphical data via the Pillow library; it is not evaluated as executable logic, shell commands, or agent instructions.
Audit Metadata