xlsx
Warn
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: MEDIUMCOMMAND_EXECUTION
Full Analysis
- Dynamic Execution (MEDIUM): The script writes a StarBasic macro to the filesystem and executes it through LibreOffice using subprocess commands.
- Persistence Mechanisms (MEDIUM): The macro is stored in the persistent user configuration directory for LibreOffice (~/.config/libreoffice or ~/Library/Application Support/LibreOffice), where it remains after the script execution.
- Indirect Prompt Injection (LOW): The skill ingests untrusted Excel files for processing, creating a potential surface for malicious data. * Ingestion points: recalc.py (load_workbook). * Boundary markers: Absent. * Capability inventory: subprocess.run (soffice). * Sanitization: None.
Audit Metadata