The Agent Skills Directory

[EXTERNAL_DOWNLOADS]: The skill references and installs several standard packages from public registries.
Fetches the markitdown utility from Microsoft's public repository for text extraction.
Installs established Node.js libraries including pptxgenjs, react-icons, and sharp from the NPM registry.
[COMMAND_EXECUTION]: The workflow involves legitimate execution of system commands to facilitate presentation processing.
Uses python -m markitdown to analyze and extract text from PowerPoint files.
Executes agent-generated JavaScript files using node compile.js to build the final presentation artifact.
[DYNAMIC_EXECUTION]: The skill utilizes a code-generation pattern where it writes individual JavaScript modules for slides and then dynamically requires and executes them during the compilation phase. This behavior is consistent with the primary purpose of using the PptxGenJS programmatic API.
[INDIRECT_PROMPT_INJECTION]: The skill has an attack surface related to processing user-provided documents.
Ingestion points: Reads and unpacks .pptx files and their internal XML structures.
Boundary markers: None explicitly defined in the provided instructions for separating processed content from instructions.
Capability inventory: Includes file system access, subprocess execution (node, python), and image fetching capabilities.
Sanitization: Follows security best practices by instructing the agent to use defusedxml for XML parsing to mitigate XML External Entity (XXE) vulnerabilities.

pptx-generator