The Agent Skills Directory

[EXTERNAL_DOWNLOADS]: The skill installs the python-pptx library from the official Python Package Index (PyPI). This is a standard and necessary dependency for the skill's local PowerPoint operations.
[COMMAND_EXECUTION]: The skill executes internal Python scripts to handle specialized tasks like file parsing and API streaming. These executions are legitimate, scoped to the skill's directory, and necessary for the intended functionality.
[DATA_EXFILTRATION]: All network operations, including file uploads and API requests, are directed to the vendor's verified domains (skywork.ai and api-tools.skywork.ai). This communication is required for the skill to function and does not constitute unauthorized exfiltration.
[PROMPT_INJECTION]: The skill possesses an indirect prompt injection surface as it processes external content from documents and web search results. 1. Ingestion points: Documents parsed via scripts/parse_file.py and web search results from scripts/web_search.py. 2. Boundary markers: The skill instructions in workflow_generate.md specify the use of REFERENCE_EOF delimiters to isolate external reference content. 3. Capability inventory: The skill can execute local scripts, perform network operations to vendor APIs, and modify local .pptx files. 4. Sanitization: While the agent is instructed to distill and summarize results, no programmatic sanitization of the raw extracted text is performed.

Skywork-ppt