Premium PDF

Security checks across malware telemetry and agentic risk

Overview

This skill locally turns user-provided markdown into a styled PDF, and the concerning scanner signals are dependency hygiene risks rather than evidence of hidden or harmful behavior.

Install it in an isolated Python environment and consider pinning vetted versions of reportlab and Pillow before use. Be aware that the skill intentionally rewrites some wording during its de-AI pass, so review generated PDFs before sharing when exact wording matters.

SkillSpector

By NVIDIA

Vulnerability Patterns

Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (4)

Unpinned Dependencies

Low

Category: Supply Chain
Content: reportlab>=4.0.0 Pillow>=9.0.0
Confidence: 92% confidence
Finding: reportlab>=4.0.0

Unpinned Dependencies

Low

Category: Supply Chain
Content: reportlab>=4.0.0 Pillow>=9.0.0
Confidence: 92% confidence
Finding: Pillow>=9.0.0

Known Vulnerable Dependency: reportlab — 6 advisory(ies): CVE-2023-33733 (Reportlab vulnerable to remote code execution); CVE-2020-28463 (Server-side Request Forgery (SSRF) via img tags in reportlab); CVE-2019-19450 (ReportLab vulnerable to remote code execution via paraparser) +3 more

Critical

Category: Supply Chain
Confidence: 97% confidence
Finding: reportlab

Known Vulnerable Dependency: Pillow — 10 advisory(ies): CVE-2016-2533 (Pillow buffer overflow in ImagingPcdDecode); CVE-2023-50447 (Arbitrary Code Execution in Pillow); CVE-2021-27922 (Pillow Uncontrolled Resource Consumption) +7 more

Critical

Category: Supply Chain
Confidence: 96% confidence
Finding: Pillow

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal