slack-gif-creator
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill does not utilize subprocesses or shell commands to perform its tasks. All operations are handled within Python using standard image processing libraries.
- [DATA_EXFILTRATION] (SAFE): There are no network calls (e.g., requests, urllib) or attempts to access sensitive system files like credentials or SSH keys. File access is limited to saving the generated GIF outputs.
- [REMOTE_CODE_EXECUTION] (SAFE): No patterns of downloading scripts from external sources or executing remote code were found. Dependencies are restricted to reputable packages on PyPI.
- [PROMPT_INJECTION] (SAFE): The instructions and documentation are focused on the technical implementation of GIF generation and do not contain attempts to override agent behavior or safety protocols.
- [DYNAMIC_EXECUTION] (SAFE): The code does not use dangerous functions like
eval()orexec()on user-provided strings. Dynamic imports used in templates are static and refer to local project modules. - [INDIRECT_PROMPT_INJECTION] (LOW): While the skill processes user-controlled text for rendering into GIFs, the impact is limited to visual output. There is no mechanism for the rendered text to influence the agent's internal logic or command execution.
Audit Metadata