PDF Editor
Security checks across malware telemetry and agentic risk
Overview
This PDF tool is clearly described, but it downloads and runs an external ComPDF executable at first use without a checksum or signature check in the reviewed package.
Install only if you trust ComPDF/PDF Technologies and are comfortable running a binary downloaded at first use. Consider verifying the downloaded archive independently, use an email address you are comfortable sending for trial activation, and avoid highly sensitive PDFs unless you trust the vendor and runtime environment.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
63/63 vendors flagged this skill as clean.