doc
Pass
Audited by Gen Agent Trust Hub on Feb 20, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS] (LOW): The skill requires external Python packages (
python-docx,pdf2image) and system tools (libreoffice,poppler). While these are standard tools for document processing, they involve downloads from public registries (PyPI, Homebrew, APT). - [COMMAND_EXECUTION] (LOW): The skill executes system commands via
subprocess.runto callsofficeandpdftoppm. The inputs to these commands (file paths) are derived from theinput_pathargument. While the script usesabspathandexpanduser, there is a minor risk of command injection if the agent processes maliciously crafted filenames without further sanitization by the shell environment. - [REMOTE_CODE_EXECUTION] (SAFE): No patterns of piping remote scripts to shells (e.g.,
curl | bash) were detected. - [DATA_EXFILTRATION] (SAFE): Network operations are not used for exfiltration. Activity is confined to local file transformation.
- [PROMPT_INJECTION] (SAFE): The
SKILL.mdcontains instructional content for the agent but does not include markers or patterns typical of jailbreaks or system prompt extraction.
Audit Metadata