Skillv1.0.0

ClawScan security

Excel · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousMar 10, 2026, 3:58 PM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill's Excel functionality matches its description, but the SKILL.md references an undeclared tool ('minimax-xlsx') and a fixed workspace path (/workspace/data/analytics/) without declaring installs or config paths — this mismatch could cause unexpected access to workspace files or require binaries that aren't present.
Guidance: This skill appears to do what it says (Excel processing) but has two small inconsistencies you should address before installing: 1) SKILL.md names a tool 'minimax-xlsx' but the skill doesn't declare that binary or an install step — confirm whether your agent environment already provides this tool or ask the publisher to include an install or declare the requirement. 2) The instructions reference a fixed workspace path (/workspace/data/analytics/) which could let the skill read other files in your workspace; ask the publisher why that path is used and whether the skill will only operate on files you explicitly upload. If you proceed, test the skill in a sandboxed environment, verify the provenance of 'minimax-xlsx', and consider restricting the agent's workspace or permissions to prevent unintended access.

Review Dimensions

Purpose & Capability: noteThe name/description (Excel operations: read/write, cleaning, formulas) match the instructions. However, the instructions explicitly say to use a tool named 'minimax-xlsx' even though the skill declares no required binaries or install steps — that's an inconsistency (the skill either assumes an environment dependency or omitted an install/requirement).
Instruction Scope: concernSKILL.md instructs use of a specific filesystem path (/workspace/data/analytics/) as the data location. That directs the agent to read files from a workspace path beyond the single uploaded file described in 'Usage' and could expose other workspace data. The instructions also refer to 'minimax-xlsx' without describing where it comes from or how it's installed.
Install Mechanism: noteThere is no install spec (instruction-only), which is lowest risk in general. But because the instructions rely on 'minimax-xlsx', the absence of an install or declared required binary is a gap — either the environment must already have that tool or the skill omitted necessary installation steps.
Credentials: noteThe skill declares no environment variables, credentials, or config paths (good). Still, the SKILL.md's hard-coded workspace path is effectively a config requirement that wasn't declared; this could allow access to unrelated files in the agent workspace and should be clarified.
Persistence & Privilege: okThe skill does not request always:true, has no install actions, and makes no claims about modifying other skills or system settings. Autonomous invocation is enabled (platform default), which is normal and not flagged on its own.