paper-reading
Pass
Audited by Gen Agent Trust Hub on Apr 13, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses shell commands such as curl to download PDFs, mkdir to manage directories, and pip to install dependencies. These operations are aligned with its purpose as a document processing utility.
- [EXTERNAL_DOWNLOADS]: The skill fetches research papers from arxiv.org, a well-known and reputable scientific repository, as well as other user-provided URLs. This is an essential feature for a paper-reading assistant.
- [REMOTE_CODE_EXECUTION]: The skill installs the pymupdf4llm package, which is a common tool for PDF-to-markdown conversion. It also executes Python scripts provided within the skill instructions to parse PDF metadata and extract figures. These actions are standard for the skill's documented functionality.
Audit Metadata