pdf-documents

Fail

Audited by Snyk on Jul 8, 2026

Risk Level: CRITICAL
Full Analysis

CRITICAL E005: Suspicious download URL detected in skill instructions.

  • Suspicious download URL detected (high risk: 0.80). The astral.sh links are high-risk because the repo recommends fetching/running a remote install.sh (curl https://astral.sh/uv/install.sh | sh) — executing remote shell scripts is a common malware vector; the example.com PDF links are benign placeholders and not flagged.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.75). Outsider-authored free text can enter the LLM context indirectly via the required runtime workflow that runs scripts/read_pdf.py on an arbitrary user-supplied http(s) URL or PDF, then emits extracted doc.export_to_text()/export_to_markdown() as JSON/markdown/text/html (which an agent would typically pass into the LLM); this is an outsider source category: public web content fetched at runtime / downloaded PDF text.

Issues (2)

E005
CRITICAL

Suspicious download URL detected in skill instructions.

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
CRITICAL
Analyzed
Jul 8, 2026, 03:58 AM
Issues
2
Security Audit — snyk — pdf-documents