docling-word
Pass
Audited by Gen Agent Trust Hub on Apr 13, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The script
scripts/docling_word_to_markdown.pyperforms system calls touvanddoclingusing thesubprocess.runmethod. These calls use argument lists, which is a secure practice that prevents shell injection vulnerabilities. - [EXTERNAL_DOWNLOADS]: The skill facilitates the installation of the
doclingpackage usinguv tool install. This is an expected and functional part of the skill's operation for document processing.
Audit Metadata