PDF to HTML

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward PDF-to-HTML helper for MinerU, with normal external CLI and token risks but no hidden or destructive behavior in the artifact.

Install only if you are comfortable trusting the MinerU CLI package and service. Use a dedicated MINERU_TOKEN, avoid putting the token in shared files or logs, and do not process confidential, regulated, or credential-bearing PDFs unless your organization approves sending them through MinerU.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The skill explicitly supports token-based extraction and URL inputs, but it does not warn users that document contents or fetched remote PDFs may be transmitted to an external MinerU service. This can lead to unintended disclosure of sensitive documents, credentials embedded in URLs, or regulated data, especially because users may assume a local-only conversion workflow from the CLI examples.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal