nano-pdf
Pass
Audited by Gen Agent Trust Hub on Feb 23, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches and installs the nano-pdf package from the official PyPI registry via the uv tool.
- [COMMAND_EXECUTION]: Executes the nano-pdf CLI tool to perform PDF edits based on natural-language instructions.
- [PROMPT_INJECTION]: The skill processes user-provided PDF files, creating a surface for indirect prompt injection.
- Ingestion points: Local PDF files (e.g., deck.pdf) provided as command arguments.
- Boundary markers: No explicit delimiters or boundary markers are used in the prompt example to isolate file content.
- Capability inventory: Executes the nano-pdf command-line tool for file modification.
- Sanitization: No evidence of validation or sanitization of the PDF content prior to processing.
Audit Metadata