docx-template-translator
Pass
Audited by Gen Agent Trust Hub on May 9, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill consists of local utility scripts that process document XML, render previews, and update fields. All operations are local to the file system; no network exfiltration or remote resource downloads were detected.
- [PROMPT_INJECTION]: There is a surface for indirect prompt injection because the skill reads content from untrusted user documents (TeX, PDF, DOCX) and incorporates that content into validation reports and final documents processed by the agent. This is an inherent, low-severity risk associated with the tool's primary purpose of document translation.
- [COMMAND_EXECUTION]: The workflow requires the agent to execute local Python scripts and interact with Microsoft Word via COM (Component Object Model). The
finalize_word_docx.pyscript specifically hardcodesAutomationSecurity = 3(msoAutomationSecurityForceDisable) before opening documents, which is a significant security control that prevents the execution of malicious VBA macros contained in user-supplied templates.
Audit Metadata