pandoc
Pass
Audited by Gen Agent Trust Hub on Mar 2, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill includes instructions and automation for fetching resources from external repositories.
- The
assets/templates/Makefilecontains asetuptarget that usescurlto download a validation script from a GitHub placeholder URL (your-repo). - Documentation in
references/snippets.mdprovidescurlcommands to download citation styles (CSL files) from the well-knowncitation-style-languagerepository on GitHub. - The troubleshooting guide and snippets suggest using
pip,apt-get,dnf, andbrewto install necessary system dependencies like Pandoc, LaTeX distributions, and PyYAML. - [COMMAND_EXECUTION]: The skill relies on shell command execution for its primary functionality.
- It utilizes
docker runto execute Pandoc within a containerized environment, managing file volumes and user permissions. - The
scripts/validate.pyscript is executed locally to verify YAML frontmatter and dependencies within Markdown files before conversion. - The provided
Makefileautomates the build process by orchestrating Docker, Python, and shell commands.
Audit Metadata