Skills
skills/hirokisakabe/pom/pom-slide/Gen Agent Trust Hub

pom-slide

Pass

Audited by Gen Agent Trust Hub on Jun 16, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill utilizes the Bash tool to execute the pom command-line utility for rendering slides (pom render) and starting a live preview server (pom preview). These operations are core to the skill's purpose.
  • [COMMAND_EXECUTION]: A fallback rendering mechanism is provided that uses established system utilities, specifically soffice (LibreOffice), pdftoppm (poppler), and magick (ImageMagick), to facilitate slide reviews when the primary renderer is unavailable.
  • [EXTERNAL_DOWNLOADS]: The documentation suggests installing the @hirokisakabe/pom-cli package from the official npm registry. This is a vendor-owned resource matching the skill's author and is required for the skill's advanced rendering features.
  • [SAFE]: The skill starts a local preview server on http://localhost:3000. This network operation is restricted to the local environment for the user's benefit and does not involve data exfiltration.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 16, 2026, 05:59 PM
Security Audit — agent-trust-hub — pom-slide