Skills
skills/wulaosiji/skills/baoyu-slide-deck/Gen Agent Trust Hub

baoyu-slide-deck

Pass

Audited by Gen Agent Trust Hub on Mar 8, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [PROMPT_INJECTION]: The skill processes untrusted user-provided content and configuration files to generate slide outlines and image generation prompts, which constitutes an indirect prompt injection surface.
  • Ingestion points: User-provided markdown files and the project-specific EXTEND.md preference file.
  • Boundary markers: None explicitly defined in the generation logic to separate instructions from user data.
  • Capability inventory: File system read/write operations and command execution via the bun runtime.
  • Sanitization: Instructions require extracting topics in 'kebab-case' for directory naming, which acts as a basic structural validator.- [COMMAND_EXECUTION]: The skill executes included TypeScript scripts (merge-to-pdf.ts and merge-to-pptx.ts) using npx and the bun runtime. These scripts perform the legitimate task of assembling images into final document formats.- [EXTERNAL_DOWNLOADS]: During the document assembly phase, the skill triggers the download of standard and widely-used Node.js packages, specifically pdf-lib and pptxgenjs, from the official npm registry.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 8, 2026, 02:24 AM