slack-gif-creator
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS] (LOW): The skill requires standard Python packages including pillow, imageio, and numpy. These are trusted libraries from standard registries but constitute external code dependencies.
- [PROMPT_INJECTION] (LOW): The skill processes untrusted user-uploaded images, creating a surface for indirect prompt injection.
- Ingestion points: User-provided images are opened via Image.open('file.png') in SKILL.md.
- Boundary markers: No delimiters or instructions to ignore embedded content are specified.
- Capability inventory: The skill can write files to the local system via builder.save().
- Sanitization: No sanitization or validation of image content/metadata is documented.
Audit Metadata