Skills
skills/plurigrid/asi/doc/Gen Agent Trust Hub

doc

Pass

Audited by Gen Agent Trust Hub on Feb 25, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill utilizes system utilities soffice (LibreOffice) and pdftoppm (Poppler) to convert documents and render page images. These calls are implemented using Python's subprocess.run with argument lists, which prevents shell injection vulnerabilities.
  • [EXTERNAL_DOWNLOADS]: The skill requires standard Python packages python-docx and pdf2image, as well as well-known system tools libreoffice and poppler-utils. The instructions for installation via pip, brew, or apt-get are standard for document-processing environments.
  • [SAFE]: The skill demonstrates safe coding practices, including the use of temporary directories for processing and secure subprocess handling. No evidence of data exfiltration, hardcoded credentials, or malicious prompt injection was found during analysis.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 25, 2026, 07:38 PM