csv-formula-injection

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 1.00). The skill explicitly documents techniques for remote code execution (DDE, cmd/powershell payloads), data exfiltration (Google Sheets IMPORT*/IMPORTXML to attacker URLs), and obfuscation to evade defenses—clearly enabling deliberate malicious behavior despite "lab-only" caveats.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.90). The skill includes concrete, actionable payloads and testing steps (DDE/cmd, PowerShell, IMPORT* functions) that can execute local or remote commands when a spreadsheet is opened, enabling arbitrary code execution on the machine used for testing despite cautionary notes to use lab targets.