report-to-pdf
Pass
Audited by Gen Agent Trust Hub on Jun 16, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- Command Line Interface Usage:
- The skill utilizes shell commands to interact with Chrome/Chromium and utilities such as
pdfinfoandpdftotext. This is the established method for rendering HTML and verifying the integrity of the generated documents. - File System Operations:
- The workflow requires reading from local HTML sources and writing PDF artifacts to local file paths. These operations are essential for the skill's primary function of document conversion.
- Content Processing and Sanitization:
- The instructions include explicit guidance to sanitize the output by removing non-reader-facing metadata and interactive UI elements. This practice reduces the potential for unintended data exposure in the final PDF.
- Indirect Interaction Surface:
- Ingestion points: The skill ingests static HTML reports or exports (referenced in SKILL.md, Step 1).
- Boundary markers: The skill instructs the agent to resolve static sources and keep visible metadata reader-facing, effectively delimiting processed content from internal state.
- Capability inventory: Subprocess calls are made to Chrome/Chromium for PDF generation and Poppler tools for verification.
- Sanitization: The skill mandates the removal of app-only controls and internal artifact metadata during the conversion process.
Audit Metadata