pptx-generator
Pass
Audited by Gen Agent Trust Hub on May 19, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill uses shell commands for legitimate functional purposes: extracting content from existing presentations via
python -m markitdownand executing a generated Node.js script (node compile.js) to assemble final presentations. - [EXTERNAL_DOWNLOADS]: The skill identifies several external dependencies required for its operation, all of which are well-known and widely-used technology packages:
markitdown(from Microsoft),pptxgenjs,react-icons,react, andsharp. - [DATA_EXPOSURE]: As part of its primary function, the skill reads and processes user-provided PowerPoint files and supports embedding images from remote URLs. No evidence was found of sensitive file access (e.g., credentials, SSH keys) or unauthorized data exfiltration.
Audit Metadata