Audit History
xlsx - 4 audits
Audit version 4
Latest SafeJan 17, 2026, 07:58 AM
All 79 static findings are FALSE POSITIVES. The skill uses subprocess calls only for legitimate LibreOffice formula recalculation with hardcoded arguments. No network data exfiltration, command injection, or malicious behavior. All filesystem operations are for LibreOffice configuration. Documentation keyword matches are benign context references.
Risk Factors
⚙️ External commands (3)
📁 Filesystem access (3)
🌐 Network access (2)
Audit version 3
SafeJan 17, 2026, 07:58 AM
All 79 static findings are FALSE POSITIVES. The skill uses subprocess calls only for legitimate LibreOffice formula recalculation with hardcoded arguments. No network data exfiltration, command injection, or malicious behavior. All filesystem operations are for LibreOffice configuration. Documentation keyword matches are benign context references.
Risk Factors
⚙️ External commands (3)
📁 Filesystem access (3)
🌐 Network access (2)
Audit version 2
SafeJan 12, 2026, 05:09 PM
All 66 static findings are FALSE POSITIVES. The skill uses subprocess calls only for legitimate LibreOffice operations with hardcoded arguments. Documentation code blocks with backticks are examples, not executable code. References to cryptographic URLs and C2 keywords in documentation are standard content unrelated to actual functionality.
Risk Factors
⚙️ External commands (3)
📁 Filesystem access (3)
🌐 Network access (2)
Audit version 1
Low RiskJan 4, 2026, 04:20 PM
This skill processes local Excel files using LibreOffice for formula recalculation. It calls external commands (soffice, timeout) to recalculate formulas and scans for errors. No network access, credential theft, or data exfiltration patterns detected. All capabilities align with the stated spreadsheet processing purpose.