pdf-to-docx
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references and provides installation instructions for several well-known and legitimate Python packages including 'pdf2docx', 'Pillow', 'pytesseract', 'pdf2image', and 'python-docx'. All documentation links point to official sources such as GitHub and ReadTheDocs.
- [COMMAND_EXECUTION]: The provided Python examples use standard file system modules ('os' and 'pathlib') to manage input and output paths for document conversion. These operations are limited to local file processing and do not involve suspicious system-level changes.
- [PROMPT_INJECTION]: The skill possesses an indirect prompt injection surface as it is designed to ingest and process external PDF files.
- Ingestion points: The skill reads external PDF files provided by the user ('pdf_path').
- Boundary markers: No specific delimiters or safety warnings are implemented to prevent the agent from obeying instructions embedded within converted PDF content.
- Capability inventory: The skill utilizes file read/write capabilities and subprocesses (via library wrappers for OCR tools like Tesseract).
- Sanitization: The skill does not perform content sanitization on the extracted text before placing it into the output document.
Audit Metadata