slides-grab-export
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill follows professional standards for slide conversion, utilizing localized tools and providing detailed technical guidance for the agent to ensure fidelity and compliance with OOXML standards.\n- [COMMAND_EXECUTION]: The skill instructs the agent to use a packaged CLI tool
slides-graband various supporting scripts (html2pptx.js,thumbnail.py,pack.py) for processing files. These commands are restricted to the local environment and the skill's specific purpose.\n- [PROMPT_INJECTION]: The skill ingests user-provided HTML slide files as its primary data source, representing an indirect prompt injection surface.\n - Ingestion points: HTML files found in the
<slides-dir>specified by the user (SKILL.md).\n - Boundary markers: None explicitly defined in the prompts to distinguish slide content from agent instructions.\n
- Capability inventory: The agent can perform file system writes and execute browser rendering via Playwright (references/pptx-skill-reference.md).\n
- Sanitization: No explicit sanitization of the HTML content is performed prior to processing.
Audit Metadata