Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [SAFE]: No malicious code, obfuscation, or persistence mechanisms were detected. The skill is composed of well-documented utility scripts for PDF manipulation.
- [EXTERNAL_DOWNLOADS]: The skill utilizes industry-standard libraries for PDF processing, including pypdf, pdfplumber, reportlab, and pypdfium2 for Python, as well as pdf-lib and pdfjs-dist for JavaScript environment support.
- [COMMAND_EXECUTION]: The instructions incorporate well-known command-line tools for advanced operations, such as qpdf for merging and encryption, poppler-utils (pdftotext) for extraction, and ImageMagick (magick) for image cropping and coordinate refinement.
- [PROMPT_INJECTION]: The skill processes external PDF documents, which creates a surface for indirect prompt injection. To mitigate this risk, the skill provides a structured workflow involving coordinate extraction (extract_form_structure.py) and data validation (check_bounding_boxes.py), reducing the likelihood of the agent accidentally obeying instructions embedded within processed document content.
Audit Metadata