nano-pdf
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the nano-pdf package from PyPI, which is a well-known and trusted public registry.
- [COMMAND_EXECUTION]: It utilizes the nano-pdf CLI tool to modify PDF files based on natural language instructions.
- [PROMPT_INJECTION]: The skill exhibits an attack surface for indirect prompt injection as it processes content from external PDF files.
- Ingestion points: Processes data from user-provided PDF files (e.g., deck.pdf).
- Boundary markers: No specific delimiters or instructions are used to isolate document content from the agent's logic.
- Capability inventory: Executes CLI commands to read and write to the local file system.
- Sanitization: No input validation or sanitization of the PDF content is performed before processing.
Audit Metadata