xlsx
Pass
Audited by Gen Agent Trust Hub on Mar 28, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The
recalc.pyscript usessubprocess.runto invokesoffice(LibreOffice) in headless mode. This is a legitimate and necessary operation for recalculating Excel formulas, which is the primary purpose of the tool. The command construction uses static arguments and the provided filename, minimizing injection risks. - [DATA_EXPOSURE]: The skill documentation provides examples for using
pandasandopenpyxlto read and write local spreadsheet files. There are no network operations or patterns indicating data exfiltration to external domains. - [REMOTE_CODE_EXECUTION]: The skill does not download or execute scripts from remote sources. All logic is contained within the provided
SKILL.mdandrecalc.pyfiles.
Audit Metadata