reportlab
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- Indirect Prompt Injection (LOW): The scripts
assets/invoice_template.pyandscripts/quick_document.pyingest untrusted data for document generation without performing sanitization.\n - Ingestion points: Data passed to the
create_invoicefunction (company_info, client_info, items) and thecreate_simple_documentfunction (content_blocks).\n - Boundary markers: Absent. Input data is directly interpolated into f-strings or passed to
Paragraphobjects without delimiters or warnings.\n - Capability inventory: File writing via
doc.build(). Potential for local file access or SSRF due to ReportLab's built-in support for<img src="...">and<link href="...">tags withinParagraphflowables.\n - Sanitization: Absent. The scripts do not follow the HTML/XML escaping best practices described in the skill's own documentation (
references/text_and_fonts.md).
Audit Metadata