Pptx

CRITICAL E004: Prompt injection detected in skill instructions.

• Potential prompt injection detected (high risk: 1.00). The prompt instructs the skill to load an external "PAI" context file (~/.claude/skills/PAI/SKILL.md) that exposes contacts, personal preferences, voice IDs, and security/routing info unrelated to PPTX processing, which is a deceptive instruction outside the skill's stated purpose.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.80). The skill explicitly instructs installing system packages using "sudo apt-get install" (and global installs like npm -g that may require elevated privileges), which directs the agent to perform privileged system modifications.)