excel
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [PROMPT_INJECTION]: The skill presents an indirect prompt injection surface by processing data from external spreadsheet files.
- Ingestion points: The agent ingests data through commands like
read,cell, andfindas documented inSKILL.md. - Boundary markers: There are no delimiters or specific instructions for the agent to ignore instructions found within the spreadsheet data.
- Capability inventory: The agent has the ability to read and write files and execute local scripts.
- Sanitization: The instructions do not specify any validation or sanitization of the extracted data before it is processed by the agent.
- [COMMAND_EXECUTION]: The skill uses a local script
scripts/excel.pyfor all workbook operations. - [EXTERNAL_DOWNLOADS]: The skill requires the
openpyxllibrary, which is a trusted and well-known dependency for Excel manipulation in Python.
Audit Metadata