nano-pdf
Pass
Audited by Gen Agent Trust Hub on Mar 28, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the 'nano-pdf' package from the Python Package Index (PyPI) during the setup process.
- [COMMAND_EXECUTION]: The skill executes the 'nano-pdf' command-line utility to perform PDF modifications based on provided instructions.
- [INDIRECT_PROMPT_INJECTION]: The skill accepts natural language strings to modify PDF content, representing a surface for indirect instructions if inputs are sourced from untrusted data.
- Ingestion points: Natural language instruction strings and input PDF files.
- Boundary markers: None specified in the documentation.
- Capability inventory: Executes a local binary for file system operations (PDF editing).
- Sanitization: Not mentioned in the skill description.
Audit Metadata