数据自动分析
v1.1.1通用数据自动分析 Skill。当用户上传 Excel(.xlsx/.xls)或 CSV 文件,或提到想分析数据、看报表、生成可视化报告、查看数据趋势时,必须使用此 Skill。自动识别所有列类型(日期、维度、数值指标),汇总全部指标,检测异常,生成包含交互式 ECharts 图表和可分页表格的 HTML 分析报告...
⭐ 0· 25·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name/description describe automated analysis of Excel/CSV files. The skill only requires python3 and Python data libs (pandas, openpyxl, xlrd, jinja2) and includes an analysis script that reads local files and produces an HTML report — these requirements match the stated purpose.
Instruction Scope
Runtime instructions tell the agent to copy the provided script into a user home directory, create a venv, install Python packages, and run the script on a local file. The script reads only the input data file and writes a local HTML report. One important note: the generated HTML embeds ECharts from cdnjs.cloudflare.com, so when a user opens the report in a browser the browser will make network requests to that CDN (this is expected for rendering but does cause the browser to contact an external host). The agent runtime itself does not appear to contact external endpoints or read unrelated system files or env vars.
Install Mechanism
No install spec — instruction-only with a bundled Python script. Dependencies are installed via pip (standard practice for a Python analysis script). There are no downloads from untrusted URLs or archive extraction steps in the skill metadata or SKILL.md.
Credentials
The skill declares no required environment variables or credentials. It asks to create a virtual environment under /home/claude and to copy its script into that location — this is a local convenience but does not require elevated privileges or access to unrelated secrets.
Persistence & Privilege
always is false and the skill does not request permanent platform-wide presence or modify other skills/configs. It instructs copying a script into the user's home directory, which is limited in scope and expected for a run-local tool.
Assessment
This skill appears to be what it says: a local Python script that analyzes spreadsheets and produces an interactive HTML report. Before running it, consider: 1) Inspect analyze.py yourself (it's included) to confirm behavior — it reads only the specified input file and writes the output HTML. 2) Run the script in an isolated environment (virtualenv or sandbox) when analyzing sensitive files. 3) The generated HTML loads ECharts from cdnjs.cloudflare.com, so opening the report in a browser will make network requests to that CDN (this can expose that someone opened the report to the CDN provider). 4) Installing the Python packages uses pip (PyPI) as normal; if your environment restricts installations, prefer running in a disposable VM or container. If you want additional assurance, run the script on a non-sensitive test file first.Like a lobster shell, security has layers — review code before you run it.
data-auto-analyzervk9758nrakcmy2tmqvedgbye4ns851jfalatestvk9758nrakcmy2tmqvedgbye4ns851jfa
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
📊 Clawdis
Binspython3