docx-to-markdown
Pass
Audited by Gen Agent Trust Hub on Apr 16, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill utilizes the legitimate 'python-docx' library for processing document files, and the implementation follows standard practices for a command-line conversion utility.
- [SAFE]: The 'docx_to_markdown.py' script includes a '_sanitize_filename' method that removes dangerous characters (such as slashes and backslashes) from extracted filenames, which prevents directory traversal attacks during the image extraction process.
- [SAFE]: All operations are performed locally on the file paths provided by the user or agent, with no network requests or external data transfers observed in the code.
- [SAFE]: No obfuscation, hidden instructions, hardcoded credentials, or persistence mechanisms were found across the skill files.
Audit Metadata