Slides

The skill is classified as suspicious due to its inherent capabilities that introduce a significant attack surface, primarily the ability to execute shell commands (e.g., `npm install`, `npx`, `marp`, `decktape` as described in `tools.md`, and `mkdir -p` in `SKILL.md` and `memory-template.md`). This capability, while necessary for the skill's stated purpose of using programmatic tools, poses a risk for potential shell injection vulnerabilities if agent input is not rigorously sanitized. Additionally, the skill describes handling sensitive API credentials (`creds.json`) for the Google Slides API in `tools.md`, which, despite being a standard authentication method, represents a sensitive operation. While the `SKILL.md` includes strong 'NEVER' rules against unauthorized actions, the underlying capabilities warrant a 'suspicious' classification rather than 'benign' due to the potential for exploitation.