ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Bank Recon Skill

Perform bank reconciliation between bank statements and general ledger files. Supports bank statement PDF ingestion, conversion of PDF statements into struct...

MIT-0 · Free to use, modify, and redistribute. No attribution required.
0 · 45 · 0 current installs · 0 all-time installs
by@chipmunkrpa
MIT-0
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name and description match the included code: parsing XLSX, extracting text streams from PDFs, converting into a structured workbook, and producing a reconciliation workbook. No unrelated env vars or binaries are requested.
Instruction Scope
SKILL.md restricts actions to reading the provided bank/GL files, running scripts/recon_logic.py, and returning an output workbook. The implementation reads PDF content streams (not OCR), constructs and writes .xlsx files (including a companion _extracted.xlsx beside a PDF) and otherwise operates locally. Be aware: the PDF parsing is brittle (regex on content streams) and could mis-parse PDFs; the script will write files beside inputs and could overwrite existing files with the same name.
Install Mechanism
No install spec — instruction-only skill with a bundled script. Nothing is downloaded or installed automatically.
Credentials
No environment variables, credentials, or config paths are required. All I/O is file-based and consistent with the stated purpose.
Persistence & Privilege
Skill is not always-on and is user-invocable; it does not request permanent presence or indicate modification of other skills or system-wide settings.
What to consider before installing
The skill appears to do what it says (parse PDFs/XLSX and reconcile), but exercise caution before running on sensitive data. Important points: - The provided Python file was truncated in the package you gave me; review the complete script to ensure no hidden network calls, credential reads, or unexpected behavior are present in the missing portion. - The script performs raw PDF content-stream parsing (not OCR). This is brittle and may mis-extract fields or drop data — test on non-sensitive sample statements first. - The script writes a companion <basename>_extracted.xlsx beside any PDF input and writes the output workbook; verify it won't overwrite important files and back up originals. - Because the package contains code, open the full file and search for any network-related modules or calls (requests, urllib, socket, http.client, ftplib, paramiko) or for writing to paths outside the working directory. If any network I/O appears, do not run until you can confirm its purpose. - If you want higher assurance, run the script in an isolated environment (VM or container) on sample data and inspect produced files. Provide the full, untruncated scripts for a higher-confidence review.

Like a lobster shell, security has layers — review code before you run it.

Current versionv1.0.2
Download zip
latestvk97cj3nta147wgvvykn9vxj34983da95

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

SKILL.md

Bank Reconciliation Skill

Reconcile bank statement rows against GL rows and produce an .xlsx workbook that is immediately reviewable by an accountant.

Workflow

  1. Identify the bank statement path and GL workbook path.
  2. Accept either a bank statement .xlsx file or a bank statement .pdf file.
  3. If the bank statement is a PDF, run the workflow so it first extracts the bank statement lines into a structured workbook, then reconciles that extracted workbook to the GL.
  4. Confirm the reconciliation threshold. Default to 0.00 unless the user asks for a tolerance.
  5. Run scripts/recon_logic.py with the bank file, GL file, output file, and threshold.
  6. Return the generated workbook and summarize:
    • matched bank row count
    • matched GL row count
    • unreconciled bank row count
    • unreconciled GL row count
  7. If the user asks for follow-up analysis, use the Summary, Unreconciled Bank, and Unreconciled GL tabs first.

Output Workbook

The generated workbook should contain these tabs:

  • Summary: threshold, matched counts, unreconciled counts, and basic totals
  • Recon Results: matched groupings with match basis and variance notes
  • Unreconciled Bank: bank rows not matched to the GL
  • Unreconciled GL: GL rows not matched to the bank

Command

python3 scripts/recon_logic.py <bank_xlsx_or_pdf> <gl_xlsx> <output_xlsx> [threshold]

When the bank input is a PDF, the script also creates a companion extracted workbook beside the PDF (same basename with _extracted.xlsx) before running reconciliation.

Matching Logic

Use a layered approach:

  1. Preserve the original signs from both source files in the output.
  2. Compare bank and GL amounts using absolute values for matching so bank polarity and accounting debit/credit polarity can reconcile without rewriting displayed source amounts.
  3. Match by shared extracted keys such as batch IDs, invoice IDs, vendor IDs, customer IDs, and tax/payment references.
  4. Allow one-to-one, one-to-many, many-to-one, and grouped many-to-many matches when totals fall within threshold.
  5. For remaining items, use semantic name grouping plus summed-amount comparison.
  6. Preserve unmatched rows in dedicated tabs instead of dropping them from the deliverable.

Notes

  • Read the first worksheet from each input workbook.
  • Expect simple three-column inputs: date, amount, description/memo.
  • For text-based bank statement PDFs, the script extracts transaction rows by reading the PDF content streams and reconstructing the transaction table into a workbook.
  • The PDF path is best for digital statements with selectable text; scanned-image PDFs would still need OCR or a multimodal extraction path.
  • Keep the workbook generation dependency-light so it can run in minimal Python environments.

Files

2 total
Select a file
Select a file to preview.

Comments

Loading comments…