Skills
skills/aiskillstore/marketplace/impress/Gen Agent Trust Hub

impress

Pass

Audited by Gen Agent Trust Hub on Jun 16, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill utilizes system binaries for document processing. Evidence includes the use of soffice for headless conversions and the subprocess module to execute zip and unzip utilities for ODP archive manipulation in SKILL.md.
  • [PROMPT_INJECTION]: The template generation workflow uses string replacement to modify XML content, presenting an indirect injection surface. Ingestion points: The content dictionary in generate_from_template function in SKILL.md. Boundary markers: None identified in the provided code snippets to delimit user content. Capability inventory: File system access via subprocess and office automation via the uno library as documented in SKILL.md. Sanitization: The logic uses direct string replacement without evidence of XML escaping or input validation.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 16, 2026, 07:19 AM
Security Audit — agent-trust-hub — impress