Skills
skills/pilioai/skills/remove-pdf-watermark/Gen Agent Trust Hub

remove-pdf-watermark

Pass

Audited by Gen Agent Trust Hub on May 5, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill downloads and executes the @pilio/cli package from the NPM registry using pnpm dlx. This is a vendor-owned resource provided by pilioai.
  • [COMMAND_EXECUTION]: The skill invokes the Pilio CLI through shell commands to perform PDF processing tasks and poll for results.
  • [CREDENTIALS_UNSAFE]: The instructions require a PILIO_API_KEY but correctly specify that it should be sourced from the environment rather than being hardcoded or requested directly from the user in the chat session.
  • [PROMPT_INJECTION]: The skill processes external data (PDF files) which constitutes an indirect prompt injection surface.
  • Ingestion points: External PDF files (e.g., ./watermarked.pdf) are passed to the CLI tool.
  • Boundary markers: No specific boundary markers or instructions to ignore embedded commands within the PDF content are present.
  • Capability inventory: The skill possesses command execution capabilities through pnpm dlx and the @pilio/cli tool.
  • Sanitization: There is no evidence of content sanitization or validation of the PDF file's internal data before processing.
Audit Metadata
Risk Level
SAFE
Analyzed
May 5, 2026, 05:39 PM
Security Audit — agent-trust-hub — remove-pdf-watermark