pandoc-pdf-error-diagnosis
Warn
Audited by Gen Agent Trust Hub on Jun 24, 2026
Risk Level: MEDIUMCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill provides numerous shell commands intended for execution, such as
pandoc --version,which, and variouspandocconversion strings involving piping toteeand error redirection. - [PRIVILEGE_ESCALATION]: The diagnostic workflow includes instructions to install missing system packages using
sudo apt-get install, which requires administrative privileges and allows modifications to the system environment. - [INDIRECT_PROMPT_INJECTION]: The workflow processes an external input file (
input.md) through thepandocutility. This represents an attack surface where maliciously crafted markdown or embedded LaTeX commands could potentially exploit the underlying PDF rendering engines (e.g., xelatex, pdflatex) during the conversion process. - Ingestion points: Reads
input.mdin conversion commands inSKILL.md. - Boundary markers: None identified in the provided instructions.
- Capability inventory: Shell command execution for diagnosis and conversion across
SKILL.md; package installation viasudoinSKILL.md. - Sanitization: None performed on the input file content before processing.
Audit Metadata