Paper Design
Security checks across static analysis, malware telemetry, and agentic risk
Overview
The skill transparently connects OpenClaw to a local Paper design app; it can edit the open design file and save screenshots, which is expected for its purpose but worth noticing.
Install only if you want OpenClaw to operate the local Paper app. It appears coherent and purpose-aligned, but it can modify or delete content in the currently open design file and save screenshots to /tmp, so use it on the intended file and keep backups for important designs.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent may create, edit, replace, duplicate, rename, or delete elements in the currently open Paper design.
The skill documents design-mutation operations, including deleting nodes from the active Paper canvas. This is aligned with the design-editing purpose, but users should understand the agent can change the open file.
exec {baseDir}/paper.sh delete_nodes '{"nodeIds":["ID1","ID2"]}'Use the skill on the intended Paper file, keep backups/version history for important work, and review changes before relying on them.
A short-lived local session file is created under /tmp by default for Paper MCP calls.
The bridge stores a local Paper MCP session identifier temporarily so later calls can reuse the session. This is expected for the local MCP workflow, but it is still a delegated local-app session artifact.
PAPER_SESSION_FILE="${PAPER_SESSION:-/tmp/paper-mcp-session}" ... echo "$session_id" > "$PAPER_SESSION_FILE"If using a shared machine, close Paper when finished and remove /tmp/paper-mcp-session if you want to clear the cached session immediately.
Running the skill executes the included local shell script and sends requested Paper tool calls to the local Paper app.
The skill uses a shell script with curl and python3 to format JSON and call the local Paper MCP server. This command execution is central to the stated bridge function and is not hidden or unrelated.
response=$(curl -s -X POST "$PAPER_MCP_URL" ...); payload=$(python3 -c "import json, sys ..." "$tool_name" "$arguments"
Confirm Paper is running locally and only invoke the skill when you want the agent to operate on the active Paper design.