killerpdf-portable-editor
Fail
Audited by Gen Agent Trust Hub on Apr 20, 2026
Risk Level: HIGHEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill downloads a ZIP archive containing an executable binary from a GitHub repository (
github.com/SteveTheKiller/KillerPDF) that is not verified as a trusted source. - [COMMAND_EXECUTION]: It provides specific PowerShell commands to invoke a web request, expand the archive, and immediately execute the resulting binary (
KillerPDF.exe). Executing unverified binaries from external sources is a high-risk activity that can lead to full system compromise. - [COMMAND_EXECUTION]: The instructions include cloning an external repository and running
dotnet publish, which executes build scripts and potential MSBuild tasks from an untrusted third-party source.
Recommendations
- AI detected serious security threats
Audit Metadata