pptx
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWEXTERNAL_DOWNLOADSSAFE
Full Analysis
- [External Downloads] (INFO): The skill requires the
python-pptxlibrary. It is sourced fromanthropics/skills, which is a trusted repository. Per [TRUST-SCOPE-RULE], this finding is downgraded to INFO. - [Indirect Prompt Injection] (MEDIUM): The skill has the capability to read existing PowerPoint files, creating a surface for indirect prompt injection.
- Ingestion points:
Presentation('existing.pptx')inSKILL.mdallows the agent to read content from external files. - Boundary markers: None. Content is processed directly without delimiters or 'ignore' instructions.
- Capability inventory: File read and write operations (
prs.save()). No network access or arbitrary command execution detected. - Sanitization: No content sanitization or validation is performed on the data read from presentations.
- [Data Exposure & Exfiltration] (LOW): The skill accesses local files (
existing.pptx,image.png) and writes files (presentation.pptx,modified.pptx). There are no indicators of unauthorized exfiltration or network activity.
Audit Metadata