ocr-document-processor
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- EXTERNAL_DOWNLOADS (SAFE): The skill depends on standard Python libraries for OCR and image processing (pytesseract, Pillow, PyMuPDF, opencv-python, numpy), which are trusted sources.
- COMMAND_EXECUTION (LOW): The skill uses pytesseract to call the external Tesseract OCR engine, which is a standard operation for this task but involves executing an external process.
- PROMPT_INJECTION (LOW): The skill is vulnerable to indirect prompt injection (Category 8) from instructions contained within processed documents. * Ingestion points: External image and PDF files processed via OCRProcessor. * Boundary markers: None identified in the documentation or inferred behavior. * Capability inventory: Reading local files and writing structured output to the filesystem. * Sanitization: No sanitization of extracted text is mentioned before it is returned to the agent.
Audit Metadata