html-ppt-retro-quarterly-review
Pass
Audited by Gen Agent Trust Hub on May 9, 2026
Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- [EXTERNAL_DOWNLOADS]: The template fetches the GSAP animation library from the jsdelivr CDN and font assets from Google Fonts. This is standard functionality for modern web-based presentation templates.
- [PROMPT_INJECTION]: The skill workflow involves reading an external 'DESIGN.md' file to apply style changes to the template, creating a surface for indirect prompt injection.
- Ingestion points: The skill reads the 'DESIGN.md' file from the local workspace as part of its first workflow step.
- Boundary markers: No explicit delimiters or instructions to ignore embedded commands are specified for the content processed from 'DESIGN.md'.
- Capability inventory: The skill utilizes 'file_write' to generate the final HTML artifact, which could be influenced by malicious content in the ingested file.
- Sanitization: There is no instruction to validate or escape data from 'DESIGN.md' before it is mapped to CSS variables or template logic.
Audit Metadata