pptx
Warn
Audited by Gen Agent Trust Hub on Jun 21, 2026
Risk Level: MEDIUMREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [REMOTE_CODE_EXECUTION]: The script
scripts/office/soffice.pyperforms dynamic code execution by writing a C source file to the temporary directory and compiling it into a shared object (.so) usinggccat runtime. This compiled library is then loaded into subprocesses using theLD_PRELOADenvironment variable to intercept system calls related to AF_UNIX sockets. - [COMMAND_EXECUTION]: The skill frequently invokes shell commands via
subprocess.run, includinggccfor compilation,sofficefor document conversion,pdftoppmfor image generation, andgitfor generating diffs. - [EXTERNAL_DOWNLOADS]: The skill documentation instructs the installation of several external dependencies from public registries and well-known services, including
markitdown,Pillow, andpptxgenjs. It also relies on system-level software like LibreOffice and Poppler. - [SAFE]: The skill uses
defusedxmlfor XML processing across multiple scripts (scripts/office/validators/base.py,scripts/clean.py,scripts/office/helpers/merge_runs.py, etc.), which is a best practice for preventing XML External Entity (XXE) attacks.
Audit Metadata