Markdown to PDF (Styled)

Security checks across malware telemetry and agentic risk

Overview

This skill is a small, user-run Markdown-to-PDF converter with a real but disclosed local-file-access caveat when rendering documents.

Use this skill only with Markdown and CSS files you trust. Because local file access is enabled for rendering, a malicious document could cause wkhtmltopdf to include local or remote resources in the PDF; also choose the output path carefully because an existing PDF path may be overwritten.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Context-Inappropriate Capability

Medium

Confidence: 95% confidence
Finding: The script invokes wkhtmltopdf with --enable-local-file-access, which allows Markdown/HTML content being rendered to load arbitrary local files accessible to the current user. If the input Markdown is untrusted, an attacker can embed references to local files and potentially exfiltrate sensitive data into the generated PDF or otherwise access unintended local resources during rendering.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal