slidev
Pass
Audited by Gen Agent Trust Hub on Apr 20, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill utilizes npm and npx to download the Slidev framework and associated dependencies from the official registry. It also provides tasks to install the Playwright Chromium browser binary for PDF and image export functionality.\n- [COMMAND_EXECUTION]: The mise.toml file defines tasks for common Slidev development operations, such as running the dev server, building static project versions, and formatting markdown files using standard industry tools.\n- [PROMPT_INJECTION]: The skill processes user-provided markdown files and external website content using Playwright, representing a surface for indirect prompt injection. Ingestion points: slides.md and external URLs accessed via brand discovery; Boundary markers: None identified; Capability inventory: Shell command execution (via mise), network access (via Playwright), and file system writes (via build and export tasks); Sanitization: No explicit sanitization of ingested content is defined in the skill files.
Audit Metadata