Skills
skills/jwynia/teach/pdf-generator/Gen Agent Trust Hub

pdf-generator

Pass

Audited by Gen Agent Trust Hub on Mar 29, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill downloads the pdf-lib and unpdf libraries from the NPM registry and CLI/path utilities from the JSR registry at runtime via Deno's module system.
  • [COMMAND_EXECUTION]: The instructions guide the agent to execute local scripts using deno run to analyze, fill, and create PDF documents, requiring file system read and write permissions.
  • [PROMPT_INJECTION]:
  • Ingestion points: The script scripts/analyze-template.ts and scripts/generate-from-template.ts read and process content from external PDF files.
  • Boundary markers: The instructions do not define markers to separate untrusted PDF content from agent instructions.
  • Capability inventory: The skill includes capabilities to read and write files on the local file system.
  • Sanitization: No sanitization or filtering is applied to the data extracted from PDF files before it is processed by the agent.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 29, 2026, 09:45 AM