pptx
Pass
Audited by Gen Agent Trust Hub on Jun 23, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes external command-line utilities to handle complex document format conversions and validations.
soffice(LibreOffice) is called inscripts/thumbnail.pyandooxml/scripts/pack.pyto convert presentations to PDF or validate their structure.pdftoppmis used inscripts/thumbnail.pyto generate slide thumbnails from PDF versions of the presentation.git diffis utilized inooxml/scripts/validation/redlining.pyto accurately track and compare text changes across document versions.- These executions are strictly for the skill's primary document management purpose and operate on workspace files.
- [SAFE]: The code follows defensive programming patterns for file and data processing.
- Secure XML parsing is implemented using
defusedxml.minidominooxml/scripts/unpack.pyandooxml/scripts/pack.pyto mitigate XXE risks. - The
html2pptx.jsscript uses Playwright for local HTML rendering with restrictive viewport and navigation settings.
Audit Metadata