opendataloader-pdf
Pass
Audited by Gen Agent Trust Hub on Mar 19, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill facilitates downloading the
opendataloader-pdfpackage from PyPI and the@opendataloader/pdfpackage from npm, which are standard, well-known package registries. - [COMMAND_EXECUTION]: Provides CLI commands for parsing documents, such as
opendataloader-pdf input.pdf output_dir/, and setup tasks likenpm run sync, which are consistent with its stated utility as a conversion tool. - [PROMPT_INJECTION]: As a document parser, the tool creates an indirect prompt injection surface where instructions in a PDF could influence the behavior of a downstream agent.
- Ingestion points: PDF files processed via CLI or Python API calls.
- Boundary markers: No specific delimiters or safety instructions are mentioned for separating extracted text from agent instructions.
- Capability inventory: The skill executes local file system operations (read/write) and spawns Java Virtual Machine (JVM) processes.
- Sanitization: No evidence of content sanitization or filtering of extracted text is provided in the documentation.
Audit Metadata