spreadsheet
Pass
Audited by Gen Agent Trust Hub on Feb 26, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes shell commands for environment setup (pip, apt-get) and file rendering (soffice, pdftoppm). These operations are essential for its documented functionality of managing and reviewing spreadsheet layouts.
- [EXTERNAL_DOWNLOADS]: The skill utilizes well-known Python packages such as openpyxl, pandas, and matplotlib, as well as standard system utilities. All dependencies are from trusted registries or official package managers.
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it processes untrusted spreadsheet data. • Ingestion points: The skill reads external .xlsx, .csv, and .tsv files in read_existing_spreadsheet.py and SKILL.md. • Boundary markers: There are no explicit delimiters or instructions to ignore embedded commands in the processed data. • Capability inventory: The skill has the ability to write to the file system and execute subprocesses for document rendering. • Sanitization: The skill uses openpyxl, which does not automatically evaluate Excel formulas, providing a layer of protection against formula-based injection attacks.
Audit Metadata