pdf-export
Pass
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill processes untrusted Markdown input to generate PDF files, creating a surface for indirect prompt injection. \n
- Ingestion points: Markdown text in reports and logs (SKILL.md). \n
- Boundary markers: Absent; no guidelines exist for delimiting untrusted content. \n
- Capability inventory: File system write operations through the migration.export_pdf tool (SKILL.md). \n
- Sanitization: Absent; the skill does not specify any validation or cleaning of input text before processing.
Audit Metadata