pptx
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- [PROMPT_INJECTION]: The skill processes untrusted content from external PPTX and HTML files, which creates an attack surface for indirect prompt injection, especially during automated Visual QA steps. However, no specific patterns of behavior modification or bypass instructions were detected in the analyzed code or instructions.
- [COMMAND_EXECUTION]: Automated slide manipulation involves calling system binaries such as 'soffice' (LibreOffice), 'pdftoppm' (Poppler), and 'git'. These are invoked via 'subprocess.run' using list-based arguments to ensure safety against shell injection and are required for core features like PDF conversion and thumbnail generation.
- [EXTERNAL_DOWNLOADS]: Installation of several standard third-party libraries is required, including 'markitdown', 'python-pptx', 'playwright', and 'sharp'. These are established and verified packages for document processing and rendering.
- [SAFE]: Security best practices are applied throughout the scripts, notably the use of 'defusedxml' for all XML parsing operations to protect against XML External Entity (XXE) attacks during document unpacking and packing.
Audit Metadata