pandoc-pdf-error-diagnosis

Warn

Audited by Gen Agent Trust Hub on Jun 24, 2026

Risk Level: MEDIUMCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill provides numerous shell commands intended for execution, such as pandoc --version, which, and various pandoc conversion strings involving piping to tee and error redirection.
  • [PRIVILEGE_ESCALATION]: The diagnostic workflow includes instructions to install missing system packages using sudo apt-get install, which requires administrative privileges and allows modifications to the system environment.
  • [INDIRECT_PROMPT_INJECTION]: The workflow processes an external input file (input.md) through the pandoc utility. This represents an attack surface where maliciously crafted markdown or embedded LaTeX commands could potentially exploit the underlying PDF rendering engines (e.g., xelatex, pdflatex) during the conversion process.
  • Ingestion points: Reads input.md in conversion commands in SKILL.md.
  • Boundary markers: None identified in the provided instructions.
  • Capability inventory: Shell command execution for diagnosis and conversion across SKILL.md; package installation via sudo in SKILL.md.
  • Sanitization: None performed on the input file content before processing.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Jun 24, 2026, 04:54 PM
Security Audit — agent-trust-hub — pandoc-pdf-error-diagnosis