pptx
Pass
Audited by Gen Agent Trust Hub on Feb 18, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- Indirect Prompt Injection (LOW): The skill reads from external .pptx files which serves as an ingestion point for untrusted data. (1) Ingestion points: existing.pptx and template.pptx. (2) Boundary markers: Absent. (3) Capability inventory: File writes via prs.save and shell execution via unzip/zip. (4) Sanitization: Absent.
- Command Execution (LOW): The skill demonstrates using shell commands 'unzip' and 'zip' for advanced OOXML editing.
- External Downloads (LOW): The skill suggests installing 'python-pptx', which is a well-known and standard library for this domain.
Audit Metadata