PDF Processing
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill provides legitimate documentation and code examples for PDF processing using established libraries like pdfplumber and pypdf.\n- [PROMPT_INJECTION]: The skill processes untrusted PDF data, which is an inherent surface for indirect prompt injection. (1) Ingestion points: pdfplumber.open() and PdfReader() in SKILL.md and FORMS.md. (2) Boundary markers: None present in the code snippets. (3) Capability inventory: The skill can write to the local file system using pypdf and Python's built-in open() function. (4) Sanitization: No sanitization of extracted text is demonstrated. This is a common property of document processing tools.
Audit Metadata