Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Spreadsheets Cog
v1.0.12AI spreadsheet and Excel generation powered by CellCog. Financial models, budget templates, data trackers, projections, pivot tables, complex formulas — XLSX...
⭐ 6· 3.8k·18 current·18 all-time
byCellCog@nitishgargiitd
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
OpenClaw
Suspicious
medium confidencePurpose & Capability
The name, description, and examples are consistent with a spreadsheet/XLSX generation tool. Declared dependency 'cellcog' also matches the stated purpose. However, the skill claims to use a CellCog SDK/agent (and references reading the separate 'cellcog' skill for the SDK) but does not declare any required credentials or installation; that mismatch is unexpected.
Instruction Scope
The SKILL.md stays on-topic: it instructs how to call a CellCog client to create spreadsheet-generation chats and gives usage patterns for different 'chat_mode' settings. It does not instruct the agent to read arbitrary system files or exfiltrate data. The only broad phrase is 'Full Python access,' which implies the runtime will run Python code, but the instructions themselves do not ask the agent to access unrelated files or secrets.
Install Mechanism
This is an instruction-only skill (no install spec, no code). That lowers risk, but the SKILL.md lists 'dependencies: [cellcog]' and shows Python client usage without providing an install mechanism or explaining how to obtain the SDK. The lack of an install spec or links to a vetted release creates ambiguity about where and how 'cellcog' is expected to be provided.
Credentials
The skill declares no required environment variables or primary credential, yet it references a remote CellCog service/SDK and usage patterns that typically require API credentials or platform tokens. The absence of any declared credentials or guidance about authentication is a mismatch that could hide a need to supply sensitive secrets elsewhere (e.g., in another skill or global agent config). The phrase 'Full Python access' also indicates capability to execute arbitrary code at runtime, which increases the sensitivity of missing credential declarations.
Persistence & Privilege
The skill does not request always:true, does not claim to modify other skills or system configuration, and is user-invocable only. It does not ask for persistent presence or elevated platform privileges.
What to consider before installing
This skill appears to be a wrapper/documentation for the CellCog spreadsheet SDK rather than a self-contained plugin. Before installing or enabling it: (1) verify where the 'cellcog' SDK comes from and whether you already have it in your environment; (2) confirm whether CellCog requires API keys or tokens (the skill does not declare any), and only provide credentials if you trust the provider and understand how they're used; (3) be cautious about the 'Full Python access' claim — running arbitrary Python code can access files and environment secrets, so restrict usage to trusted inputs and sessions; (4) check for a canonical source or package (PyPI/GitHub releases) for the SDK and prefer that over unknown installers; (5) if you need guarantees, ask the publisher for an install spec and explicit authentication instructions so you can audit what will run and what secrets are needed.Like a lobster shell, security has layers — review code before you run it.
latestvk975grjvz2nfgdaqd0yec49j5d84ve36
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
📋 Clawdis
OSmacOS · Linux · Windows