xlsx
Pass
Audited by Gen Agent Trust Hub on Feb 21, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The script invokes the soffice binary to perform formula recalculation in Excel files. This is the core functionality of the tool.
- [DYNAMIC_EXECUTION] (SAFE): The script generates a StarBasic macro locally from a hardcoded template to automate the calculate and save functions within LibreOffice. This is a standard automation technique for this application.
- [PERSISTENCE] (SAFE): The script writes the automation macro to the application configuration directory (~/.config/libreoffice or ~/Library/Application Support/LibreOffice). While this is a persistent modification, it is a functional requirement for the skill's operation.
- [INDIRECT_PROMPT_INJECTION] (SAFE): The skill processes data from untrusted Excel files to report formula errors. 1. Ingestion points: recalc.py (load_workbook). 2. Boundary markers: N/A (cell content is used for error detection, not prompt construction). 3. Capability inventory: LibreOffice subprocess execution. 4. Sanitization: None.
Audit Metadata