gog-slides
Pass
Audited by Gen Agent Trust Hub on Jun 22, 2026
Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- [PROMPT_INJECTION]: The skill ingests data from external Google Slides presentations, which can contain instructions that attempt to influence agent behavior.
- Ingestion points: Data enters the context via
read-slide,list-slides, andrawcommands as documented inSKILL.md. - Boundary markers: The skill suggests using the
--wrap-untrustedflag to assist the agent in isolating external content inSKILL.md. - Capability inventory: The skill possesses broad manipulation permissions, including slide deletion, text replacement, and presentation cloning in
SKILL.md. - Sanitization: Safety is primarily handled through the tool-level
--wrap-untrustedflag. - [EXTERNAL_DOWNLOADS]: The skill facilitates the retrieval of remote assets for presentation use.
- Evidence: The
insert-imageandreplace-slidecommands explicitly support fetching content from public URLs inSKILL.md. - Evidence: The
exportandthumbnailcommands involve downloading files to the local environment inSKILL.md.
Audit Metadata