slack-gif-creator
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- Prompt Injection (SAFE): The skill contains no instructions designed to override agent behavior or bypass safety filters.
- Data Exposure & Exfiltration (SAFE): No access to sensitive system paths (e.g., credentials, SSH keys) or network-based exfiltration mechanisms was found. The code only performs local image processing.
- Obfuscation (SAFE): The code is written in clear Python with no encoded strings (Base64), zero-width characters, or homoglyph-based evasion techniques.
- Unverifiable Dependencies & RCE (SAFE): The requirements (pillow, imageio, imageio-ffmpeg, numpy) are standard, trusted libraries for image and video processing. No remote scripts are downloaded or executed.
- Privilege Escalation (SAFE): The skill does not use administrative commands (sudo) or attempt to modify system-level permissions.
- Persistence Mechanisms (SAFE): There are no attempts to modify shell profiles, scheduled tasks, or startup services.
- Indirect Prompt Injection (LOW): The skill accepts user-provided text and emojis for GIF generation. While this untrusted data is rendered into images, the skill does not interpret this content as instructions. The risk of downstream vision-capable agents misinterpreting generated images is a general AI safety consideration rather than a vulnerability in this specific skill.
- Dynamic Execution (SAFE): The logic uses standard PIL/Numpy functions for image manipulation. There is no usage of eval(), exec(), or unsafe deserialization (e.g., pickle) on untrusted data.
Audit Metadata