The Agent Skills Directory

[Prompt Injection] (SAFE): Instructions focus on technical constraints and animation logic for Slack GIFs. No attempts to override agent safety protocols or extract internal prompts were found.- [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials, sensitive file path access, or network communication code detected. The skill operates locally on provided image data.- [Obfuscation] (SAFE): No encoded strings, hidden characters, or homoglyphs were found in the source code or instructions.- [Unverifiable Dependencies & Remote Code Execution] (SAFE): Dependencies (Pillow, NumPy, Imageio) are standard, well-known libraries from the Python Package Index. No dangerous functions like eval(), exec(), or subprocess spawning are used.- [Indirect Prompt Injection] (SAFE): The skill provides logic to process user-provided images. While this is an external data ingestion surface, it is necessary for the skill's primary purpose and lacks high-risk capabilities that would enable exploitation. Ingestion points: Image.open() calls mentioned in SKILL.md and used in logic. Boundary markers: None. Capability inventory: Local file system write via PIL/Imageio. Sanitization: Relies on standard PIL image format validation.

slack-gif-creator