nano-pdf
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the 'nano-pdf' package from PyPI, a well-known and trusted package registry.
- [COMMAND_EXECUTION]: The skill executes the 'nano-pdf' command-line interface to edit PDF documents based on user instructions.
- [PROMPT_INJECTION]: The skill processes untrusted PDF content and user instructions. Ingestion points: PDF files and user text instructions. Boundary markers: No explicit delimiters are present in the skill definition. Capability inventory: Executes the 'nano-pdf' command-line tool. Sanitization: Content processing and sanitization are handled by the external 'nano-pdf' utility.
Audit Metadata