pptx
Pass
Audited by Gen Agent Trust Hub on Mar 28, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: The skill processes user-provided PowerPoint files, creating an ingestion surface for potential indirect prompt injection. This is an inherent risk of file-processing skills and is mitigated by the specific task-oriented instructions provided to the agent and the use of secure parsing libraries.
- [COMMAND_EXECUTION]: The skill utilizes trusted system utilities including LibreOffice (soffice), Poppler (pdftoppm), and git via subprocess calls to perform document conversion, thumbnail generation, and content validation. These commands use controlled arguments and operate exclusively on local files.
- [EXTERNAL_DOWNLOADS]: The skill documentation references standard, well-known libraries and tools such as playwright, sharp, and python-pptx. These are intended to be installed via official package managers (pip, npm) and are necessary for the skill's document manipulation functionality.
Audit Metadata