Skills
skills/jst-well-dan/skill-box/xlsx/Gen Agent Trust Hub

xlsx

Fail

Audited by Gen Agent Trust Hub on Feb 16, 2026

Risk Level: HIGHCOMMAND_EXECUTION
Full Analysis
  • Indirect Prompt Injection (HIGH): The skill processes external Excel files and possesses the capability to execute system commands. Ingestion points: Path to Excel file and cell contents via openpyxl. Boundary markers: None. Capability inventory: Executes soffice and timeout via subprocess; writes macro files to the user's LibreOffice configuration directory. Sanitization: No validation of file content or macro-safety is performed.
  • Command Execution (MEDIUM): The script executes external binaries (soffice) using subprocess.run with user-provided paths.
  • Dynamic Execution (MEDIUM): The script dynamically generates and saves a StarBasic macro to the user's local configuration directory to enable application-level recalculation functions.
Recommendations
  • AI detected serious security threats
Audit Metadata
Risk Level
HIGH
Analyzed
Feb 16, 2026, 02:24 AM