pptx
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes Python and JavaScript code snippets for programmatic creation and editing of .pptx files, which is standard for document automation tasks.
- [EXTERNAL_DOWNLOADS]: Mentions well-known and trusted libraries such as 'pptxgenjs' for Node.js and 'python-pptx' for Python, which are appropriate for the skill's stated purpose.
- [PROMPT_INJECTION]: The skill includes instructions for the agent to follow specific design principles and perform quality assurance checks (e.g., finding bugs, checking for element overlap). These are benign task-specific instructions and do not attempt to bypass core safety guardrails.
- [PROMPT_INJECTION]: Analysis of indirect injection surface: (1) Ingestion points: Content is read from external presentation files via the 'read_document' tool and script-based parsing. (2) Boundary markers: No specific markers are mentioned for slide content. (3) Capability inventory: The skill can write files, execute scripts, and convert formats. (4) Sanitization: No explicit sanitization of slide content is described, but the risk is low given the specific domain of PowerPoint manipulation.
Audit Metadata