Review Summary
PassAudited by ClawScan on May 8, 2026.
Overview
This skill appears to be a purpose-aligned local Excel generator, with minor setup/dependency notes but no evidence of malicious behavior.
This appears safe for its stated purpose, but it will run local Python code on budget review spreadsheets. Use it on the intended folder only, verify that Python/openpyxl are available, and manually review the automatically classified categories as the skill itself recommends.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Running the skill executes local Python code that reads the selected data directory and creates an Excel output file.
The skill asks the user or agent to run a bundled Python script. This is purpose-aligned for generating the workbook, but it is still local code execution that users should recognize before invoking.
python3 scripts/generate_review_summary.py <数据目录> <输出.xlsx> \ --project "项目名" --building-area 208465.8
Run it only on project folders you intend to process, keep a backup of source files, and review the generated workbook before using it officially.
The skill may fail to run unless Python and the needed Excel library are already installed.
The script depends on openpyxl, while the registry metadata declares no required binaries, environment variables, or install spec. This is a setup completeness issue rather than evidence of unsafe behavior.
import openpyxl from openpyxl.styles import Font, Alignment, Border, Side, PatternFill
Confirm the Python environment and dependencies before use; the publisher should declare runtime requirements explicitly.