The Agent Skills Directory

[COMMAND_EXECUTION]: The skill executes local TypeScript scripts (merge-to-pptx.ts and merge-to-pdf.ts) using the bun runtime to merge generated images into final document formats. These scripts perform standard file I/O operations and do not contain network calls or arbitrary code execution vulnerabilities.
[SAFE]: Analysis of the 34 files, including instructions and scripts, found no evidence of credential harvesting, data exfiltration, or malicious obfuscation. The skill follows best practices by requiring user confirmation before proceeding with generation tasks.
[EXTERNAL_DOWNLOADS]: The skill relies on well-known and trusted JavaScript libraries (pdf-lib and pptxgenjs) and standard runtimes (bun or npx). These are handled through standard package management practices and do not involve untrusted remote code execution.
[PROMPT_INJECTION]: No patterns of system prompt extraction, safety filter bypasses, or 'Ignore Previous Instruction' injections were found. The skill uses structured templates to maintain control over the agent's output.

baoyu-slide-deck