ppt-keynote
Pass
Audited by Gen Agent Trust Hub on May 18, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill's primary function is to provide layout and styling instructions for generating presentation slides. It does not contain any malicious instructions or hidden payloads.
- [EXTERNAL_DOWNLOADS]: The skill references Tailwind CSS via its official CDN (
cdn.tailwindcss.com) and Google Fonts. These are well-known services used for standard web development and do not pose a security risk in this context. - [COMMAND_EXECUTION]: No shell commands, privileged operations, or system-level scripts are executed or requested by the skill. The mentioned
pnpm devcommand is part of an illustrative example for user workflow and is not an automated execution pattern. - [DATA_EXFILTRATION]: There are no indicators of data collection or exfiltration. The skill operates within the context of UI generation.
- [SAFE]: Indirect Prompt Injection Surface: The skill facilitates the transformation of user-provided content into an HTML slide deck. While this creates a surface where untrusted data is processed, the skill itself lacks dangerous capabilities (such as network access or sensitive file system modification) that could be exploited through such an injection.
Audit Metadata