skills/nomadamas/ralphton-seoul-presentaion-skill/ralphthon-seoul-mid-presentation-ko/Gen Agent Trust Hub
ralphthon-seoul-mid-presentation-ko
Warn
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONREMOTE_CODE_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user or agent to install the
slides-grabpackage from the npm registry and useplaywrightto download and install the Chromium browser engine. - [COMMAND_EXECUTION]: The workflow involves several shell commands including
npm install,npx playwright install, and variousslides-grabCLI operations such asvalidate,build-viewer, andedit. These commands are executed based on the logic defined inSKILL.md. - [REMOTE_CODE_EXECUTION]: The skill contains instructions to register the downloaded
slides-grabpackage as a persistent agent capability usingnpx skills add ./node_modules/slides-grab -g -a codex --yes --copy. This pattern effectively installs and authorizes third-party code to run with the agent's permissions. - [PROMPT_INJECTION]: The workflow processes untrusted user input from interview responses to generate slide content and file structures. Because the skill lacks explicit boundary markers or sanitization for this input, it presents an indirect prompt injection surface where malicious user data could attempt to influence the slide generation or validation tools.
Audit Metadata