latex-health-check
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security vulnerabilities were detected in the skill instructions.
- [COMMAND_EXECUTION]: The skill utilizes a restricted set of shell commands specifically for LaTeX document processing, including
latexmk,pdflatex, and bibliography management tools. These commands are executed locally and are consistent with the skill's purpose. - [DATA_EXPOSURE]: The skill accesses specific local paths related to cloud storage (e.g.,
~/Library/CloudStorage/) to discover research projects. This is a legitimate operational requirement for its intended use case and does not involve external exfiltration. - [DYNAMIC_EXECUTION]: Automatically generates a
.latexmkrcconfiguration file if it is missing from a project directory. This behavior is used to standardize build settings and does not involve the execution of untrusted code from external sources. - [INDIRECT_PROMPT_INJECTION]: The skill processes untrusted external data such as LaTeX source files and build logs to identify and fix errors. While this creates a theoretical attack surface, the risk is mitigated by the use of predefined fix patterns and the restriction of agent capabilities to a specific toolset.
- Ingestion points: Reads
.tex,.bib, and.logfiles from project directories. - Boundary markers: None explicitly defined for file content processing.
- Capability inventory: Includes
Write,Edit, andBashexecution for LaTeX-related tasks. - Sanitization: Fixes are applied based on rigid pattern matching (e.g., adding missing packages) rather than executing arbitrary instructions found in logs.
Audit Metadata