speakerdeck-reader

Pass

Audited by Gen Agent Trust Hub on Jun 23, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill fetches presentation files from SpeakerDeck's official file servers to enable visual analysis of the slides.
  • [COMMAND_EXECUTION]: Uses the curl utility to download files to the temporary directory for processing.
  • [PROMPT_INJECTION]: Identifies a potential indirect prompt injection surface due to processing untrusted data from external URLs.
  • Ingestion points: Extracts data and URLs from speakerdeck.com using WebFetch in SKILL.md.
  • Boundary markers: None provided for the extracted data or URL.
  • Capability inventory: Shell command execution (curl), file system writes (/tmp/), and document analysis via the Read tool.
  • Sanitization: No explicit validation or escaping is applied to the extracted PDF URL before it is used in the shell command.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 23, 2026, 06:03 AM
Security Audit — agent-trust-hub — speakerdeck-reader