Linux GUI Control
Security checks across malware telemetry and agentic risk
Overview
This is a straightforward local Linux GUI automation skill, but it can click, type, inspect on-screen UI text, and take screenshots, so users should invoke it only on intended applications.
This skill appears coherent and purpose-aligned for local Linux desktop automation. Before installing, understand that it can control your mouse and keyboard, inspect visible UI text, and save screenshots. Use it only with trusted tasks, keep sensitive applications closed or minimized, and confirm the target window before allowing clicks, typing, or app restarts.
VirusTotal
66/66 vendors flagged this skill as clean.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If invoked with the wrong target, the agent could click, type, or press keys in an unintended application.
The helper exposes direct GUI input and window-control operations. This is exactly the stated purpose, but it can affect whichever desktop application is active or targeted.
xdotool mousemove --sync "$1" "$2" click 1 xdotool type "$1" xdotool key "$1" wmctrl -a "$1"
Use this skill only when the intended target window is clear, and review or confirm actions before using it in sensitive applications.
Text from open applications may become visible to the agent and possibly retained in the conversation context.
The UI inspection script prints application UI element names and roles into the agent context. This is purpose-aligned, but UI trees may include sensitive on-screen text.
print(' ' * depth + f'<{role}> {name}')Avoid inspecting applications that display secrets, private messages, personal data, or confidential work unless that data is needed for the task.
Installation or runtime may fail unless the user already has the required desktop automation tools installed from trusted sources.
The metadata does not declare the external tools required by SKILL.md and the scripts, including xdotool, wmctrl, dogtail, and scrot.
Required binaries (all must exist): none; No install spec — this is an instruction-only skill.
Install required packages from the operating system’s trusted package manager and verify that the skill runs only the included scripts.
Using this command on the wrong app could close unsaved work or restart an application unexpectedly.
The documentation suggests killing and relaunching Electron applications with an accessibility flag. This is related to the stated UI-inspection purpose, but it can disrupt the selected application.
pkill <app> nohup <app> --force-renderer-accessibility > /dev/null 2>&1 &
Only relaunch applications this way after saving work and confirming the exact app name.