Back to skill

Security audit

Minimax Xlsx

Security checks across malware telemetry and agentic risk

Overview

This spreadsheet skill appears useful, but it needs review because it can make persistent changes to the user's LibreOffice macro profile and is triggered too broadly.

Install only if you intentionally want a local spreadsheet-generation tool that runs shell commands and modifies workbook files. Before using formula recalculation, isolate or back up the LibreOffice profile, and verify any MiniMaxXlsx executable separately because it is referenced but not included in the inspected artifact.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Context-Inappropriate Capability

Medium
Confidence
93% confidence
Finding
The script silently installs a global LibreOffice macro into the user's profile, modifying persistent application state outside the target workbook. This creates cross-document security exposure because the macro remains available to future LibreOffice sessions and changes trust-sensitive configuration without explicit consent or isolation.

Vague Triggers

Medium
Confidence
82% confidence
Finding
The trigger text is extremely broad: it activates for essentially any tabular data, numeric analysis, or spreadsheet generation task. Overbroad routing can cause this high-capability skill to be selected for routine requests that do not need shell or file-system access, expanding exposure to dangerous tools and making prompt-injection or unsafe workflow execution more likely in otherwise low-risk contexts.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
Writing Module1.xba directly into the user's profile without a clear warning or opt-in is a persistent side effect that users are unlikely to expect from a recalculation utility. This weakens transparency and can violate security assumptions around office macro configuration and user profile integrity.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.