pptx
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill leverages local system utilities to perform its core functions. It calls LibreOffice (soffice) for PDF conversion and document validation, uses Poppler (pdftoppm) for slide-to-image conversion, and executes Playwright (chromium) for HTML rendering. These commands are executed locally and are restricted to processing presentation data.
- [SAFE]: The skill contains several security-focused design choices. It implements XML parsing using the defusedxml library to mitigate risks associated with XML External Entity (XXE) attacks. All file read and write operations are performed within the local workspace or temporary directories, and the logic remains focused on document manipulation without unauthorized network access or obfuscated instructions.
Audit Metadata