Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [SAFE]: No malicious patterns such as prompt injection, obfuscation, or data exfiltration were found. The skill operates exclusively on local files using standard libraries.
- [COMMAND_EXECUTION]: The skill utilizes local command-line utilities like
pdftotext,qpdf, andpdftkfor processing documents. These are standard system tools used for their intended purpose. - [REMOTE_CODE_EXECUTION]: The
fill_fillable_fields.pyscript includes a runtime modification (monkeypatch) of thepypdflibrary to resolve a specific formatting bug in selection lists. This is a localized functional fix and does not involve remote code retrieval or untrusted execution.
Audit Metadata