The Agent Skills Directory

[COMMAND_EXECUTION] (SAFE): The pack.py script utilizes subprocess.run to invoke the local soffice (LibreOffice) binary for document validation purposes. This is implemented securely using a list of arguments and avoiding shell execution, which prevents command injection.- [DATA_EXFILTRATION] (SAFE): No network operations, hardcoded credentials, or exfiltration patterns were detected. All file operations are restricted to the local filesystem.- [REMOTE_CODE_EXECUTION] (SAFE): The skill does not contain any code for downloading external scripts or using dynamic execution functions like eval() or exec().- [SAFE] (SAFE): The primary XML parsing logic in pack.py and unpack.py uses defusedxml, which is a security-hardened library designed to mitigate XML External Entity (XXE) and other XML-based attacks.

pptx