Extract PDF Text

Security checks across malware telemetry and agentic risk

Overview

This skill is a local PDF text-extraction guide; the main cautions are installing PDF/OCR dependencies and not copying example passwords into real code.

Install only if you need local PDF text extraction. Use a virtual environment when installing Python packages, trust your package sources, run OCR system-package commands only if needed, and replace example passwords with prompted or otherwise protected credential handling in real code.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: This markdown file contains code examples that embed a plaintext password value (`"secret123"`) for opening and authenticating a protected PDF. The surrounding documentation does not warn users against hardcoding secrets or explain safer credential handling, which can normalize insecure handling of sensitive data.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal