Skills
skills/yipng05-max/-skills/pdf-bib-import/Gen Agent Trust Hub

pdf-bib-import

Pass

Audited by Gen Agent Trust Hub on Apr 1, 2026

Risk Level: SAFECOMMAND_EXECUTIONREMOTE_CODE_EXECUTIONDATA_EXFILTRATION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses subprocess.run to execute command-line binaries like pdfinfo, pdftotext, and lark-cli for metadata extraction and API communication.- [REMOTE_CODE_EXECUTION]: The skill creates and executes temporary Python scripts in the /tmp folder to handle batch processing of PDF files and data formatting.- [DATA_EXFILTRATION]: The skill reads local PDF metadata and transmits it to the Lark platform, which is consistent with its stated purpose of research document management.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 1, 2026, 02:09 AM