nano-pdf
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the
nano-pdfpackage from the Python Package Index (PyPI). - [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it interprets natural language instructions while processing content from external PDF files.
- Ingestion points: Processes PDF documents as part of the
nano-pdf editfunctionality. - Boundary markers: The skill definition lacks explicit delimiters or warnings to isolate document data from system-level instructions.
- Capability inventory: The skill executes the
nano-pdfbinary to perform file system modifications on PDF documents. - Sanitization: No evidence of sanitization or content validation for the PDF data is provided in the skill wrapper.
Audit Metadata