pdf-documents
Fail
Audited by Snyk on Jul 8, 2026
Risk Level: CRITICAL
Full Analysis
CRITICAL E005: Suspicious download URL detected in skill instructions.
- Suspicious download URL detected (high risk: 0.80). The astral.sh links are high-risk because the repo recommends fetching/running a remote install.sh (curl https://astral.sh/uv/install.sh | sh) — executing remote shell scripts is a common malware vector; the example.com PDF links are benign placeholders and not flagged.
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.75). Outsider-authored free text can enter the LLM context indirectly via the required runtime workflow that runs
scripts/read_pdf.pyon an arbitrary user-suppliedhttp(s)URL or PDF, then emits extracteddoc.export_to_text()/export_to_markdown()as JSON/markdown/text/html (which an agent would typically pass into the LLM); this is an outsider source category: public web content fetched at runtime / downloaded PDF text.
Issues (2)
E005
CRITICALSuspicious download URL detected in skill instructions.
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata