databricks-unstructured-pdf-generation

Pass

Audited by Gen Agent Trust Hub on Jun 26, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [SAFE]: No malicious patterns, obfuscation, or suspicious data handling behaviors were detected. The skill's operations are consistent with its documented purpose of preparing evaluation datasets.
  • [EXTERNAL_DOWNLOADS]: The skill requires the installation of the plutoprint package from the standard Python Package Index (PyPI). This is a functional dependency for the HTML-to-PDF conversion script.
  • [COMMAND_EXECUTION]: The workflow executes the databricks CLI to copy files to cloud volumes (databricks fs cp). These commands target the user's own Databricks environment and require pre-existing authentication.
  • [SAFE]: The skill ingests untrusted HTML files to generate PDFs. While this represents a potential surface for indirect prompt injection in downstream applications that consume these PDFs, the generation process itself is handled by a standard local conversion library and does not execute the HTML content.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 26, 2026, 01:23 PM
Security Audit — agent-trust-hub — databricks-unstructured-pdf-generation