smart-ocr
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill relies on well-established, industry-standard libraries for its core functionality, including PaddleOCR, Pillow, and pdf2image.
- [EXTERNAL_DOWNLOADS]: Includes functionality to fetch image data from remote URLs using the requests library, which is a common requirement for OCR services.
- [PROMPT_INJECTION]: The skill processes external text via OCR, creating a surface for indirect prompt injection where text contained within an image could be interpreted as instructions by the AI agent.
Audit Metadata