python-pptx
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- [Dependency Management] (INFO): The skill references standard Python packages 'python-pptx' and 'Pillow'. These are well-known, legitimate libraries for document and image processing.
- [File System Access] (LOW): The code snippets demonstrate saving presentation files to the local disk (e.g., 'report.pptx'). This is the intended and expected functionality for a document automation tool.
- [Indirect Prompt Injection] (LOW): The provided template replacement logic uses simple string replacement. While this could allow untrusted data into a generated slide, the risk is limited to content manipulation within the document and does not provide a path for code execution or system compromise.
Audit Metadata