pptx
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill executes system commands via subprocess calls to perform document conversions and comparisons. These include calling 'soffice' (LibreOffice) for PDF generation and 'pdftoppm' for image extraction. It also uses 'git diff' for comparing document versions. All commands are purpose-specific and use standard system utilities.
- [EXTERNAL_DOWNLOADS]: The skill requires several external libraries to function. Python dependencies include 'markitdown' for text extraction and 'defusedxml' for secure parsing. Node.js dependencies include 'pptxgenjs' for presentation generation, 'playwright' for layout rendering, and 'sharp' for image processing. All dependencies are well-known and widely used in document processing workflows.
- [SAFE]: The skill implements secure XML parsing using the 'defusedxml' library in its packing and unpacking scripts, which effectively mitigates XML External Entity (XXE) vulnerabilities.
- [SAFE]: Comprehensive validation logic is provided to ensure that generated OOXML files conform to standard schemas and maintain internal relationship integrity, reducing the risk of file corruption.
Audit Metadata