ClawHub

Excel Translator

Security checks across malware telemetry and agentic risk

Overview

This Excel translator behaves like an API-backed translation tool, but users should know workbook text is sent to the configured OpenAI-compatible service.

Install only if you are comfortable sending spreadsheet text, potentially from every sheet, to the configured OpenAI-compatible API using local API credentials. Avoid confidential workbooks unless the provider, account, and OPENAI_BASE_URL are approved for that data.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)

Tp4

High
Category
MCP Tool Poisoning
Confidence
90% confidence
Finding
The skill claims a local Excel translation workflow but discloses that workbook cell contents are sent to an external OpenAI-compatible API. This can expose sensitive spreadsheet data to a third party without clear user consent, and the claims about preserving charts/behavior are overstated, which may mislead users about data handling and output integrity.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The code sends workbook cell contents to an external LLM service without an explicit consent gate or warning at the point of transmission. Because spreadsheets often contain sensitive business or personal data, this can cause unintended disclosure in ordinary use, especially when users may assume translation happens locally.

Ssd 3

Medium
Confidence
95% confidence
Finding
The implementation batches and transmits all text cells from each sheet to a remote LLM, which can expose sensitive workbook contents such as financial, HR, legal, or customer data. In the context of an Excel translator, this is particularly risky because users may submit full workbooks and the code performs broad collection rather than minimizing or selectively redacting data.

External Transmission

Medium
Category
Data Exfiltration
Content
The script reads API credentials from environment variables. These are pre-configured in the Manus sandbox:

- `OPENAI_API_KEY` — API key for the translation model.
- `OPENAI_BASE_URL` — Base URL for the API endpoint (defaults to `https://api.openai.com/v1`).

## Bundled Resources
Confidence
93% confidence
Finding
https://api.openai.com/

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal