Is itrocker/nanobanana-ppt-skills safe?

https://github.com/openclaw/skills/tree/main/skills/itrocker/nanobanana-ppt-skills

84
SAFE

This is a legitimate PPT generation skill that integrates multiple AI services to create presentations with images, videos, and transitions. While it contains detailed agent instructions and processes content through external APIs, no malicious behavior was detected.

Category Scores

Prompt Injection 85/100 · 30%
Data Exfiltration 75/100 · 25%
Code Execution 80/100 · 20%
Clone Behavior 95/100 · 10%
Canary Integrity 95/100 · 10%
Behavioral Reasoning 85/100 · 5%

Findings (3)

MEDIUM Detailed Agent Workflow Instructions -15

SKILL.md contains extensive instructions directing the agent's behavior through multiple phases of PPT generation, including specific error handling and user interaction patterns. While appearing legitimate, these detailed instructions could potentially interfere with system instructions.

LOW Multiple External API Dependencies -25

The skill integrates with multiple external AI services (Google Gemini, Kling AI, Anthropic) and processes user document content through these APIs, which could raise privacy concerns for sensitive documents.

INFO Executable Scripts Present -20

Contains executable Python scripts and shell scripts for PPT generation functionality, which is expected and appropriate for this skill's stated purpose.