pdf-to-txt
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS] (LOW): The skill installs the
pymupdf4llmpackage from PyPI during installation. This is a standard dependency required for the skill's primary purpose. - [COMMAND_EXECUTION] (LOW): The skill instructions (SKILL.md) define execution via shell command strings. This requires the calling agent to ensure the
<pdf_path>and other arguments are properly escaped to prevent command injection if the input is user-provided. - [INDIRECT_PROMPT_INJECTION] (LOW):
- Ingestion points:
scripts/convert.pyprocesses untrusted data from external PDF files. - Boundary markers: Absent. The script writes extracted text directly to an output file without adding delimiters or warnings.
- Capability inventory: The skill has the capability to read and write files on the local system.
- Sanitization: No sanitization or filtering is performed on the extracted text before it is written to the output file, which may later be read by the agent.
Audit Metadata