notebooklm-ppt-designer
Pass
Audited by Gen Agent Trust Hub on Feb 15, 2026
Risk Level: LOWPROMPT_INJECTION
Full Analysis
- PROMPT_INJECTION (LOW): Indirect Prompt Injection risk due to handling untrusted user input. The skill ingests user scripts and outlines to generate PPT design schemes and Gamma Pro instructions.
- Ingestion points: Identified in SKILL.md (Step 1) where the agent processes external text assets.
- Boundary markers: No explicit delimiters or 'ignore embedded instructions' warnings are present in the output templates to isolate user-provided content.
- Capability inventory: The skill is limited to generating text-based designs, ASCII layouts, and YAML parameters; it has no write, execute, or network capabilities.
- Sanitization: No sanitization or filtering logic is defined to prevent instructions embedded within user scripts from influencing the agent's behavior.
Audit Metadata