CSV Wizard
PassAudited by VirusTotal on May 11, 2026.
Overview
Type: OpenClaw Skill Name: csv-wizard Version: 1.0.1 The skill bundle describes a standard CSV data cleaning utility (csv-wizard) with features for type inference, missing value handling, and duplicate detection. The documentation in SKILL.md and README.md is consistent with the stated purpose, and there is no evidence of prompt injection, data exfiltration, or malicious execution instructions.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A user could unintentionally produce a cleaned file that omits or changes data if they choose the wrong options.
The documented command can change CSV contents by removing rows and filling values, then write an output file. This is expected for a CSV-cleaning tool, but users should verify the output before relying on it.
/clean-csv sales.csv --drop-duplicates --fill-missing median --output clean-sales.csv
Run it on copies or specify a separate output file, and review the cleaned CSV before replacing important data.
If the external repository changes or is not trustworthy, running its CLI could expose local files or alter data outside what was reviewed here.
The README points users to external code that is not included in the submitted artifact set. This is user-directed rather than automatic, but it means users should review the external repository before running it.
git clone https://github.com/kimi-claw/skill-csv-wizard.git cd skill-csv-wizard ./bin/clean-csv --help
Inspect the external repository before use, prefer a trusted pinned commit or release, and avoid running unreviewed code on sensitive CSV files.