Skills
skills/nexu-io/open-design/html-ppt/Gen Agent Trust Hub

html-ppt

Pass

Audited by Gen Agent Trust Hub on May 5, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The script scripts/render.sh invokes the local Google Chrome binary with flags such as --headless, --screenshot, and --no-sandbox to capture high-resolution images of slide decks. This is the intended mechanism for PNG export.
  • [COMMAND_EXECUTION]: The scaffolding script scripts/new-deck.sh utilizes the sed utility to programmatically rewrite relative resource paths when creating new presentation folders from templates.
  • [EXTERNAL_DOWNLOADS]: Presentation templates and CSS files reference external assets from well-known and trusted services, including fonts.googleapis.com for typography and cdn.jsdelivr.net for common libraries like chart.js and highlight.js.
  • [COMMAND_EXECUTION]: The SKILL.md and README.md files provide instructions for using npx to manage the skill's lifecycle within the AI agent environment.
  • [COMMAND_EXECUTION]: The animation runtime assets/animations/fx-runtime.js dynamically manages the loading of local animation modules by appending <script> tags to the document head based on a predefined internal whitelist.
Audit Metadata
Risk Level
SAFE
Analyzed
May 5, 2026, 11:23 AM