syncfusion-javascript-pdf-viewer
Pass
Audited by Gen Agent Trust Hub on Apr 1, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill identifies and uses official Syncfusion CDN endpoints (cdn.syncfusion.com) for loading PDF documents and library scripts. These are standard vendor resources for a web-based PDF viewer.
- [SAFE]: The instructions establish a 'Strict Mode' for code generation, requiring the agent to verify all APIs, properties, and methods against documented reference tables. This effectively prevents the generation of undocumented or potentially unsafe code.
- [SAFE]: The skill uses legitimate configuration patterns for handling document interaction and authentication (e.g., AJAX request headers). No hardcoded secrets or suspicious network exfiltration patterns are present.
- [PROMPT_INJECTION]: The skill supports text extraction and document processing from external PDF files. While this represents a surface for indirect prompt injection, there are no capabilities in the skill that would allow the agent to execute untrusted code or exfiltrate data based on the document content.
Audit Metadata