Skills
skills/sundial-org/awesome-openclaw-skills/table-image/Gen Agent Trust Hub

table-image

Warn

Audited by Gen Agent Trust Hub on Mar 2, 2026

Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill requires downloading and installing a tool from an unverified GitHub repository (github.com/joargp/tablesnap) using go install or git clone followed by go build.
  • [EXTERNAL_DOWNLOADS]: The skill includes instructions to download additional external emoji assets using the command tablesnap emojis install.
  • [COMMAND_EXECUTION]: The skill executes the tablesnap binary to process table data and generate image files.
  • [PROMPT_INJECTION]: The skill exhibits an attack surface for indirect prompt injection by processing external tabular data. Ingestion points: Tabular markdown data provided via standard input. Boundary markers: None present to isolate untrusted table content. Capability inventory: Execution of the tablesnap command-line utility. Sanitization: No validation or sanitization is performed on the table content before it is processed by the external tool.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Mar 2, 2026, 12:04 PM