ocrmypdf-batch
Pass
Audited by Gen Agent Trust Hub on Apr 6, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: Provides various bash commands and scripts for automated PDF processing, including shell loops and parallel processing tools.
- [EXTERNAL_DOWNLOADS]: Instructs the agent to download Docker images. A specific instance contains a typo 'jbar65t83/ocrmypdf' which differs from the official maintainer's name 'jbarlow83'.
- [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection because it processes untrusted PDF documents.
- Ingestion points: Processes external PDF files from the filesystem.
- Boundary markers: Absent; there are no instructions to differentiate document content from commands.
- Capability inventory: Extensive shell execution and Docker capabilities.
- Sanitization: Absent; no input validation is performed on the files being processed.
Audit Metadata