Excel

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed Excel connector that can read and change workbook data, with appropriate confirmation guidance for write and delete actions.

Install only if you are comfortable letting OOMOL-connected Excel actions read and modify workbook data in your account. Confirm exact targets and payloads before writes or deletes, and treat the create_session permission note as documentation that needs clarification rather than a blocker.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Intent-Code Divergence

High

Confidence: 92% confidence
Finding: The documentation assigns the `excel.read` scope to an action explicitly labeled as a write action that changes Excel state. This scope mismatch can mislead an agent or operator into assuming the action is safe under read-only permissions, weakening permission review and increasing the chance of unintended state-changing operations being approved or attempted.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal