pdf-merge-split
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Mentions the PyPDF2 and pikepdf libraries as dependencies. These are standard, legitimate Python packages for PDF manipulation and are sourced from official registries.
- [COMMAND_EXECUTION]: Includes Python code for merging, splitting, and extracting PDF pages. The logic is restricted to standard file operations using the PyPDF2 library and does not execute arbitrary shell commands or access sensitive system paths.
- [PROMPT_INJECTION]: The skill ingests user-provided PDF files, creating a surface for indirect prompt injection. However, the tool performs only structural manipulation (merging/splitting) and does not interpret the semantic content of the documents, rendering the risk negligible. Ingestion points: validate_pdfs, merge_pdfs, split_pdf, and extract_pages in SKILL.md. Boundary markers: Absent. Capability inventory: Local file read/write via PyPDF2. Sanitization: Absent.
Audit Metadata