HTML Slides for OpenClaw
v1.0.0为 OpenClaw 打造的网页幻灯片创建技能。将用户需求转化为精美的 HTML 演示文稿,支持从零创建和 PPT 转换两种模式。触发词:做幻灯片 / 做 PPT / 做演示 / 做 slides / 做一个网页版自我介绍 / 帮我做个路演 PPT。
⭐ 0· 71·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name/description, SKILL.md, and included scripts (extract-pptx.py, export-pdf.sh, deploy.sh) coherently implement PPT extraction, HTML generation, PDF export, and optional deployment to Vercel. The requested artifacts and supporting files match the declared features.
Instruction Scope
Instructions tell the agent to read the bundled supporting files and to run local scripts for PPT extraction, PDF export, and Vercel deployment. This is consistent with the feature set, but the workflow explicitly copies local referenced files into a deploy package and opens/serves local files—so verify that generated/packaged HTML does not reference or include unintended sensitive local paths.
Install Mechanism
Registry has no install spec (instruction-only), but the shipped scripts will attempt to install/use external tooling at runtime (npm/ npx/vercel, Playwright/Chromium, Python packages like python-pptx and Pillow). Those operations download and install software/binaries on the host if the user runs the scripts; this is expected for the functionality but is higher-risk than pure instruction-only skills.
Credentials
The skill declares no environment variables or credentials. It does direct users to authenticate with Vercel (via CLI interactive login) if they choose deployment, which is appropriate. No unexplained secret access is requested by the skill itself.
Persistence & Privilege
always is false and the skill does not request persistent privileges or modify other skills. Scripts operate on user-provided files and may create temporary directories; nothing in the package attempts to change system-wide agent configuration.
Assessment
This skill is internally consistent for making HTML slides, converting .pptx, exporting PDFs, and optionally deploying to Vercel. Before running any scripts: 1) Inspect the generated HTML for references to local files (images, ../ paths) you don’t want published — deploy.sh will copy non-http references and publish them to your Vercel account. 2) Be aware export-pdf.sh uses Playwright/Chromium and may download browser binaries; install dependencies manually in a controlled environment (virtualenv/container) if concerned. 3) Deploy scripts may run npm install -g vercel (global installs) — prefer using npx or a scoped environment if you want to avoid global changes. 4) When deploying, you will authenticate to Vercel and the deployed site will be publicly accessible under your account—do not deploy content that contains secrets. 5) If you lack trust in the origin, run extraction/export steps on a sandboxed machine or review/execute the scripts step-by-step rather than allowing automatic installs. Overall: coherent and expected for its purpose, but exercise normal caution around deployment and dependency installation.Like a lobster shell, security has layers — review code before you run it.
latestvk971n4r1wjpnxf6djk86efg0q1842r4d
License
MIT-0
Free to use, modify, and redistribute. No attribution required.