pdf-editing

Security checks across malware telemetry and agentic risk

Overview

This is a small instruction-only PDF editing guide whose local file reads and writes match its stated purpose.

Install only if you need PDF editing guidance. Work on copies of important PDFs, verify redactions by extracting text from the final file, and only modify documents you are authorized to edit.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 88% confidence
Finding: The skill provides direct examples that modify documents and save an output file without warning about destructive edits, data integrity risks, or preserving the original source document. In a document-editing context, this can lead to unintended alteration of important records, especially if a caller reuses filenames or assumes the process is non-destructive.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal