csvglow
v0.1.0Generate beautiful interactive HTML dashboards from CSV/Excel files with smart insights, auto-detected charts, correlations, and statistics.
⭐ 0· 278·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
medium confidencePurpose & Capability
Name/description match the declared requirement: the skill simply delegates to a 'csvglow' CLI to generate HTML dashboards from CSV/Excel files. The required binary is proportional to the stated purpose.
Instruction Scope
SKILL.md instructs the agent to run the csvglow CLI on user files and optionally open the generated HTML. That stays within the described purpose. One noteworthy instruction: csvglow has an '--mcp' (server) mode mentioned — running that would start a network service and could expose data beyond a local HTML output, so it expands the runtime scope and should be used with caution.
Install Mechanism
There is no install spec in the skill (instruction-only). That reduces surface risk in the skill itself, but it means the user/agent must obtain the csvglow binary externally. The SKILL.md/homepage points to a GitHub repo — verify releases and checksums before installing from third-party sources.
Credentials
No environment variables, credentials, or config paths are requested. This is proportionate for a local data-visualization CLI.
Persistence & Privilege
always is false and the skill does not request persistent privileges or modify other skills. Autonomous invocation is allowed (platform default) but not an additional privilege here.
Assessment
This skill is a thin wrapper that expects you to have the csvglow CLI installed. Before installing or running it: 1) Verify the csvglow binary's source (prefer official releases, package managers, or signed releases on the GitHub repo) to avoid installing malicious binaries. 2) Do not run the '--mcp' or any server mode unless you understand and trust it — server mode may expose data over the network. 3) When generating dashboards, the tool will read local CSV/Excel files (as intended); avoid feeding sensitive or confidential data unless you trust the binary and its provenance. 4) If you want stronger assurance, inspect the upstream repo code and release artifacts or run the CLI in a sandboxed environment first.Like a lobster shell, security has layers — review code before you run it.
latestvk97e064ha6tsyyj58741v27fd5824kc6
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
✨ Clawdis
Binscsvglow