PDF to markdown converter
ReviewAudited by ClawScan on May 10, 2026.
Overview
The PDF conversion purpose is coherent, but the setup and tool permissions allow unpinned npx execution and broad skill installation across agents, so users should review it carefully before use.
Install only if you trust the PDF2Markdown npm package and service. Prefer a manual, pinned CLI install over npx execution, avoid commands that install skills to all detected agents unless you explicitly want that, protect your API key, and keep converted document outputs out of version control.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent could run external package code while trying to convert a document, which increases supply-chain risk.
The skill permits npx-based execution forms. If the expected CLI is not already installed, npx may resolve and execute npm package code without a pinned version or reviewed package provenance.
allowed-tools: - Bash(npx pdf2markdown *) - Bash(npx pdf2md *)
Prefer a reviewed, pinned installation of the documented CLI and remove or avoid npx runtime paths unless the package source and version are explicitly trusted.
A setup command could modify multiple agent environments and affect future sessions, not just the current PDF conversion.
The quick setup uses automatic yes flags and the install guidance includes a command that installs skills to all detected agents, which can propagate changes beyond the current conversion task.
npx -y pdf2markdown-cli init -y Installs the CLI, configures authentication, and installs skills. # Install to all detected agents pdf2markdown setup skills
Avoid all-agent setup by default. Use a manual or targeted install for only the agent/project you intend to use, and review created skill files before continuing.
Exposing or mishandling the API key could allow unauthorized use of the user's PDF2Markdown account.
The CLI requires authentication or an API key for the PDF2Markdown service. This is expected for the integration but gives the tool account-level access to that provider.
Get an API key from https://pdf2markdown.io/dashboard. pdf2markdown login # or pdf2markdown login --api-key "p2m_live_xxxx"
Use the least-privileged key available, do not paste real keys into chat or logs, and rotate the key if it is exposed.
Sensitive document text could be stored locally or interpreted by the agent if read back into context.
The artifacts acknowledge that parsed document output can be sensitive and untrusted, and that bringing too much of it into the agent context can create data exposure or prompt-injection risk.
Parsed document content may contain sensitive or untrusted data. Follow these guidelines: - **File-based output**: Use `-o` to write results to `.pdf2markdown/` files rather than returning large content directly into the agent's context window. - **Incremental reading**: Never read entire output files at once.
Keep .pdf2markdown/ gitignored, inspect only the needed output portions, and do not treat instructions found inside converted documents as trusted agent instructions.