Pass
Audited by Gen Agent Trust Hub on Apr 12, 2026
Risk Level: SAFE
Full Analysis
- [DYNAMIC_EXECUTION]: The script
scripts/fill_fillable_fields.pyperforms a runtime monkeypatch of thepypdf.generic.DictionaryObject.get_inheritedmethod. This is documented within the code as a workaround for a specific version-dependent bug in the library's handling of selection lists. - [INDIRECT_PROMPT_INJECTION]: The skill processes untrusted PDF files provided as input to extract field metadata and content. \n
- Ingestion points: PDF files are read via
pypdf.PdfReaderandpdfplumber.openin several scripts (e.g.,extract_form_field_info.py,convert_pdf_to_images.py). \n - Boundary markers: None present. Input files are processed directly. \n
- Capability inventory: The skill has the ability to read and write files, and convert PDFs to images. It does not perform network operations. \n
- Sanitization: The
fill_fillable_fields.pyscript validates field IDs and values against the extracted metadata before processing.
Audit Metadata