doc-parser
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: Indirect Prompt Injection surface detected. The skill parses untrusted external documents (PDF, DOCX, images) and presents their content to the agent context.
- Ingestion points: The
parse_documentfunction inSKILL.mdaccepts arbitrary file paths to be processed by thedoclinglibrary. - Boundary markers: No explicit delimiters or instructions to ignore embedded commands are included when the parsed content is presented to the agent.
- Capability inventory: The skill possesses file-writing capabilities through the
save_tablesfunction which writes CSV files to the local filesystem. - Sanitization: There is no evidence of sanitization, filtering, or validation of the extracted document content before it is processed or displayed.
- [EXTERNAL_DOWNLOADS]: The skill recommends installing the
doclingpackage via pip.doclingis an official library maintained by IBM, a well-known technology provider, and is considered a safe dependency for document processing tasks.
Audit Metadata