Security checks across malware telemetry and agentic risk
OkraPDF is a coherent remote PDF-processing skill, but users should treat uploaded documents, prompts, and exports as data shared with an external service.
Install only if you trust OkraPDF with the PDFs and prompts you plan to process. Avoid uploading secrets, regulated records, customer data, or proprietary documents unless the provider and its retention policy are approved for that data. Use a dedicated API key, store it securely, review global npm package provenance, and require explicit confirmation before running delete, export, sandbox, or large parallel collection operations.
### HTTP
```bash
# From URL
curl -X POST https://api.okrapdf.com/v1/documents \
-H "Authorization: Bearer $OKRA_API_KEY" \
-H "Content-Type: application/json" \
-d '{"url": "https://arxiv.org/pdf/2307.09288"}'### HTTP
```bash
curl -X POST https://api.okrapdf.com/document/doc-abc123/chat/completions \
-H "Authorization: Bearer $OKRA_API_KEY" \
-H "Content-Type: application/json" \
-d '{**HTTP (fanout):**
```bash
curl -X POST https://api.okrapdf.com/v1/collections/col-xxx/query \
-H "Authorization: Bearer $OKRA_API_KEY" \
-H "Content-Type: application/json" \
-d '{"query": "What was total revenue in Q4?"}'# Fan-out: same question to multiple docs in parallel
for doc_id in doc-abc123 doc-def456 doc-ghi789; do
curl -s -X POST "https://api.okrapdf.com/document/$doc_id/chat/completions" \
-H "Authorization: Bearer $OKRA_API_KEY" \
-H "Content-Type: application/json" \
-d "{\"messages\": [{\"role\": \"user\", \"content\": \"What was total revenue?\"}], \"stream\": false}" &"mcpServers": {
"okra-pdf": {
"type": "url",
"url": "https://api.okrapdf.com/mcp",
"headers": { "Authorization": "Bearer YOUR_API_KEY" }
}
}### HTTP
```bash
# From URL
curl -X POST https://api.okrapdf.com/v1/documents \
-H "Authorization: Bearer $OKRA_API_KEY" \
-H "Content-Type: application/json" \
-d '{"url": "https://arxiv.org/pdf/2307.09288"}'-d '{"url": "https://arxiv.org/pdf/2307.09288"}'
# From file
curl -X POST https://api.okrapdf.com/v1/documents \
-H "Authorization: Bearer $OKRA_API_KEY" \
-F "file=@report.pdf" -F "page_images=cover"
```### HTTP ```bash # Full markdown curl https://api.okrapdf.com/v1/documents/doc-abc123/full.md \ -H "Authorization: Bearer $OKRA_API_KEY" # Specific page
-H "Authorization: Bearer $OKRA_API_KEY" # Specific page curl "https://api.okrapdf.com/v1/documents/doc-abc123/pages/3" \ -H "Authorization: Bearer $OKRA_API_KEY" # All pages as JSON
-H "Authorization: Bearer $OKRA_API_KEY" # All pages as JSON curl https://api.okrapdf.com/v1/documents/doc-abc123/pages \ -H "Authorization: Bearer $OKRA_API_KEY" ```
### HTTP (OpenAI-compatible)
```bash
curl -X POST https://api.okrapdf.com/document/doc-abc123/chat/completions \
-H "Authorization: Bearer $OKRA_API_KEY" \
-H "Content-Type: application/json" \
-d '{### HTTP
```bash
curl -X POST https://api.okrapdf.com/document/doc-abc123/chat/completions \
-H "Authorization: Bearer $OKRA_API_KEY" \
-H "Content-Type: application/json" \
-d '{### HTTP ```bash curl https://api.okrapdf.com/v1/documents/doc-abc123/entities/tables \ -H "Authorization: Bearer $OKRA_API_KEY" curl https://api.okrapdf.com/v1/documents/doc-abc123/entities \
curl https://api.okrapdf.com/v1/documents/doc-abc123/entities/tables \ -H "Authorization: Bearer $OKRA_API_KEY" curl https://api.okrapdf.com/v1/documents/doc-abc123/entities \ -H "Authorization: Bearer $OKRA_API_KEY" ```
**HTTP:**
```bash
# Create with seed documents
curl -X POST https://api.okrapdf.com/v1/collections \
-H "Authorization: Bearer $OKRA_API_KEY" \
-H "Content-Type: application/json" \
-d '{"name": "Q4 Earnings", "document_ids": ["doc-abc123", "doc-def456"]}'-d '{"name": "Q4 Earnings", "document_ids": ["doc-abc123", "doc-def456"]}'
# Add documents
curl -X POST https://api.okrapdf.com/v1/collections/col-xxx/documents \
-H "Authorization: Bearer $OKRA_API_KEY" \
-H "Content-Type: application/json" \
-d '{"document_ids": ["doc-ghi789"]}'# List / get / delete curl https://api.okrapdf.com/v1/collections -H "Authorization: Bearer $OKRA_API_KEY" curl https://api.okrapdf.com/v1/collections/col-xxx -H "Authorization: Bearer $OKRA_API_KEY" curl -X DELETE https://api.okrapdf.com/v1/collections/col-xxx -H "Authorization: Bearer $OKRA_API_KEY" ``` ### Query across documents
**HTTP (fanout):**
```bash
curl -X POST https://api.okrapdf.com/v1/collections/col-xxx/query \
-H "Authorization: Bearer $OKRA_API_KEY" \
-H "Content-Type: application/json" \
-d '{"query": "What was total revenue in Q4?"}'**HTTP (sandbox):**
```bash
curl -X POST https://api.okrapdf.com/v1/collections/col-xxx/query \
-H "Authorization: Bearer $OKRA_API_KEY" \
-H "Content-Type: application/json" \
-d '{"prompt": "Compare R&D spending. Show a table.", "mode": "sandbox"}'### Export ```bash # NDJSON stream curl -N "https://api.okrapdf.com/v1/collections/col-xxx/export?format=markdown" \ -H "Authorization: Bearer $OKRA_API_KEY" # Zip archive
-H "Authorization: Bearer $OKRA_API_KEY" # Zip archive curl -L "https://api.okrapdf.com/v1/collections/col-xxx/export?format=zip" \ -H "Authorization: Bearer $OKRA_API_KEY" -o collection.zip ```
okra extract report.pdf -o json -q > report.json # HTTP curl https://api.okrapdf.com/exports/doc-abc123/markdown -H "Authorization: Bearer $OKRA_API_KEY" curl -o report.xlsx https://api.okrapdf.com/exports/doc-abc123/excel -H "Authorization: Bearer $OKRA_API_KEY" curl -o report.docx https://api.okrapdf.com/exports/doc-abc123/docx -H "Authorization: Bearer $OKRA_API_KEY" curl https://api.okrapdf.com/exports/doc-abc123/snapshot -H "Authorization: Bearer $OKRA_API_KEY"
# HTTP curl https://api.okrapdf.com/exports/doc-abc123/markdown -H "Authorization: Bearer $OKRA_API_KEY" curl -o report.xlsx https://api.okrapdf.com/exports/doc-abc123/excel -H "Authorization: Bearer $OKRA_API_KEY" curl -o report.docx https://api.okrapdf.com/exports/doc-abc123/docx -H "Authorization: Bearer $OKRA_API_KEY" curl https://api.okrapdf.com/exports/doc-abc123/snapshot -H "Authorization: Bearer $OKRA_API_KEY" ```
65/65 vendors flagged this skill as clean.