PDF Converter
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill defines tools for processing external document types (PDF, Word, HTML), creating a surface for indirect prompt injection where instructions could be embedded in the processed files.
- Ingestion points: Untrusted content enters the agent context through the
pdf_to_docx,docx_to_pdf, andhtml_to_pdftools. - Boundary markers: There are no explicit instructions or delimiters defined to warn the agent against following embedded instructions in the source documents.
- Capability inventory: The skill utilizes tools for document transformation and text extraction.
- Sanitization: No sanitization or validation of the input file content is specified in the skill configuration.
Audit Metadata