nano-pdf
Pass
Audited by Gen Agent Trust Hub on Mar 7, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill downloads and installs the
nano-pdfpackage from the official PyPI registry using theuvpackage manager. PyPI is a well-known and trusted service. - [COMMAND_EXECUTION]: The skill executes the
nano-pdfcommand-line tool to modify local PDF files. This execution is the primary intended function of the skill and is triggered by specific user instructions. - [PROMPT_INJECTION]: The skill possesses an inherent attack surface for indirect prompt injection as it processes natural language to modify files.
- Ingestion points: Natural language instruction strings passed to the CLI via
SKILL.md. - Boundary markers: Not present in the command template.
- Capability inventory: Modification of local filesystem objects (PDF files).
- Sanitization: No explicit input validation or sanitization of the natural language instruction is documented. This risk is considered acceptable as it is tied directly to the skill's core purpose.
Audit Metadata