Back to skill

Security audit

Upstage Document Parse

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward helper for parsing documents with Upstage's remote API, so the main consideration is that selected documents are uploaded to a third party.

Install only if you intend to process documents with Upstage. Do not send confidential, regulated, personal, or secret documents unless third-party processing by Upstage is allowed by your policies and you understand the provider's retention terms.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (4)

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill instructs uploading user-supplied documents to Upstage’s external API but does not explicitly warn the user that document contents will leave the local environment and be processed by a third party. This can expose sensitive or regulated data if the agent uses the skill without informed user consent or appropriate privacy handling.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The example explicitly uploads a local document to a third-party API but does not include a user-facing warning about external data transmission, storage duration, or sensitivity considerations. In a document-processing skill, this matters because users may supply confidential PDFs or office files and the document notes that results are retained for 30 days, increasing privacy and compliance risk if users are not clearly informed.

External Transmission

Medium
Category
Data Exfiltration
Content
import requests

with open("report.pdf", "rb") as f:
    response = requests.post(
        "https://api.upstage.ai/v1/document-digitization",
        headers={"Authorization": f"Bearer {os.environ['UPSTAGE_API_KEY']}"},
        files={"document": f},
Confidence
90% confidence
Finding
requests.post( "https://

External Transmission

Medium
Category
Data Exfiltration
Content
with open("report.pdf", "rb") as f:
    response = requests.post(
        "https://api.upstage.ai/v1/document-digitization",
        headers={"Authorization": f"Bearer {os.environ['UPSTAGE_API_KEY']}"},
        files={"document": f},
        data={"model": "document-parse", "output_formats": "['markdown']"}
Confidence
90% confidence
Finding
https://api.upstage.ai/

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.