pptx-generator
Pass
Audited by Gen Agent Trust Hub on Apr 10, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses shell commands to process PowerPoint files and execute its own generated logic. This includes using 'python -m markitdown' for content extraction and 'node compile.js' for assembling presentations. It also performs script generation by creating individual JavaScript modules for slides that are subsequently loaded via require().
- [EXTERNAL_DOWNLOADS]: The skill manages dependencies from official registries, installing libraries such as 'markitdown' (from Microsoft), 'pptxgenjs', and 'react-icons'. It also supports the inclusion of remote images in slides using provided URLs.
- [PROMPT_INJECTION]: The skill has a surface for indirect prompt injection because it processes user-provided PowerPoint files. Ingestion occurs when 'markitdown' extracts text from 'presentation.pptx'. While explicit boundary markers are absent, the skill's capability to execute code is limited to its own compilation script, and it employs 'defusedxml.minidom' for sanitizing XML data during the editing workflow.
Audit Metadata