The Agent Skills Directory

Indirect Prompt Injection (LOW): The skill has an attack surface where untrusted user input can influence agent behavior. In accordance with the analysis framework, this is rated as LOW due to the presence of both data ingestion and sensitive capabilities.
Ingestion points: SKILL.md identifies that the skill processes user-uploaded images and text-based animation requests.
Boundary markers: There are no boundary markers or instructions to treat user data as untrusted in the provided logic.
Capability inventory: core/gif_builder.py provides the save method which writes files to the local disk.
Sanitization: No input sanitization or output path validation is performed in the utility functions.

slack-gif-creator