Skills
skills/jimmc414/kosmos/xlsx/Gen Agent Trust Hub

xlsx

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [Dynamic Execution] (LOW): The script generates a StarBasic macro file (Module1.xba) within the user's local LibreOffice configuration directory and executes it via the vnd.sun.star.script protocol. This is a primary function of the skill to enable headless recalculation.
  • [Persistence Mechanisms] (LOW): Writing the macro to the application configuration directory causes it to persist across sessions, which is an intended side effect for the tool's operation.
  • [Unverifiable Dependencies & Remote Code Execution] (LOW): The skill invokes external system binaries (soffice, timeout) using subprocess.run. The implementation uses argument lists rather than shell strings, mitigating command injection risks.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 06:19 PM