Skills
skills/orangeviolin/presentation-skill/presentation/Gen Agent Trust Hub

presentation

Pass

Audited by Gen Agent Trust Hub on Apr 13, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill fetches design specifications (DESIGN.md) from a public GitHub repository at runtime.
  • Evidence: Fetches from https://raw.githubusercontent.com/VoltAgent/awesome-design-md/main/designs/{slug}/DESIGN.md to extract CSS variables and design tokens.
  • [COMMAND_EXECUTION]: The skill uses the system open command to launch the generated HTML presentation in the user's default browser.
  • Evidence: Instructions in SKILL.md specify using open {主题}_slides.html for previewing.
  • [INDIRECT_PROMPT_INJECTION]: The skill processes untrusted content from an external GitHub repository.
  • Ingestion points: Fetches DESIGN.md in SKILL.md.
  • Boundary markers: Absent; the agent is instructed to extract specific design elements from the fetched text.
  • Capability inventory: File system write and browser invocation (open).
  • Sanitization: Not explicitly mentioned, though the extraction scope is limited to design tokens.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 13, 2026, 06:33 AM