PDF Processing Pro
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Indirect Prompt Injection] (LOW): The skill processes untrusted external PDF documents which can contain embedded instructions designed to influence the agent's logic.
- Ingestion points: PDF files processed via analyze_form.py and extraction scripts.
- Boundary markers: Absent; the skill does not wrap extracted content in delimiters.
- Capability inventory: The skill utilizes subprocess.run for orchestration and provides file-write capabilities for output.
- Sanitization: No content-level validation or escaping of extracted text is implemented.
- [Privilege Escalation] (LOW): Documentation includes instructions for installing system packages with sudo, which is a standard requirement for the skill's Tesseract OCR functionality and is consistent with the primary purpose.
Audit Metadata