Skills
skills/iofficeai/officecli/officecli-pptx/Gen Agent Trust Hub

officecli-pptx

Fail

Audited by Gen Agent Trust Hub on May 18, 2026

Risk Level: HIGHREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill fetches installation scripts from the vendor's repository on GitHub to set up the 'officecli' tool.
  • [REMOTE_CODE_EXECUTION]: Employs shell piping (e.g., curl | bash and irm | iex) to execute remote scripts during the initial setup phase.
  • [COMMAND_EXECUTION]: Performs extensive file system operations and presentation manipulations using a command-line interface, including opening a web browser for visual previews.
  • [INDIRECT_PROMPT_INJECTION]:
  • Ingestion points: Processes user-provided .pptx files through various inspection and extraction commands like view text and view annotated in SKILL.md and editing.md.
  • Boundary markers: Lacks explicit delimiters or instructions to ignore potential commands embedded within the processed slide content.
  • Capability inventory: Possesses the ability to modify files, render content to HTML/SVG, and launch a web browser via officecli.
  • Sanitization: Does not specify any validation or sanitization routines for the data extracted from PowerPoint files.
Recommendations
  • HIGH: Downloads and executes remote code from: https://raw.githubusercontent.com/iOfficeAI/OfficeCLI/main/install.sh - DO NOT USE without thorough review
Audit Metadata
Risk Level
HIGH
Analyzed
May 18, 2026, 09:27 AM
Security Audit — agent-trust-hub — officecli-pptx