markdown-to-epub-converter
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Indirect Prompt Injection] (SAFE): The skill processes untrusted markdown data. While this creates a surface for indirect prompt injection, the documentation in
REFERENCE.mdconfirms the use of HTML escaping and sanitization for code blocks and special characters. This mitigates the risk of content breaking out of the intended EPUB structure. - [Data Exposure & Exfiltration] (SAFE): The skill documentation describes localized file operations (reading markdown, writing EPUB). There are no network calls to non-whitelisted domains or access patterns targeting sensitive system files.
- [Unverifiable Dependencies] (SAFE): The
requirements.txtfile contains standard, versioned packages (ebooklib,markdown2,Pygments) used widely for document processing and syntax highlighting.
Audit Metadata