pptx
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): The skill implements security best practices by using the 'defusedxml' library in 'unpack.py' and 'pack.py' to mitigate risks from XML External Entity (XXE) and expansion attacks when processing Office documents.
- [COMMAND_EXECUTION] (SAFE): In 'ooxml/scripts/pack.py', the 'soffice' utility is called via 'subprocess.run' to validate document integrity. The implementation uses a list-based argument structure and avoids shell execution, which prevents command injection vulnerabilities.
- [SAFE] (SAFE): No indicators of data exfiltration, hardcoded credentials, or persistence mechanisms were found. The skill operates on local files within specified directories and utilizes temporary storage for intermediate steps.
Audit Metadata