Pass
Audited by Gen Agent Trust Hub on Mar 15, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements a structured workflow for PDF processing using well-known and reputable libraries such as pypdf, pdfplumber, and reportlab. All file operations are localized to the input and output paths provided by the user.
- [DYNAMIC_EXECUTION]: The file
scripts/fill_fillable_fields.pycontains a runtime monkeypatch for thepypdflibrary. This modification is explicitly documented within the code as a workaround for a specific bug inpypdf's handling of selection list fields. The patch is narrow in scope and does not introduce arbitrary code execution or other security vulnerabilities. - [EXTERNAL_DOWNLOADS]: The documentation refers to standard system utilities (e.g., qpdf, poppler-utils) and third-party libraries. These are well-known technology tools and their inclusion as dependencies is standard practice for this skill's primary purpose. No automated or unauthorized remote code execution patterns were detected.
Audit Metadata