Word Automation
Security checks across malware telemetry and agentic risk
Overview
This is a straightforward Windows Word/WPS automation skill that can edit user-selected documents and requires a manual pywin32 dependency, with no evidence of hidden network, credential, or persistence behavior.
Before installing, confirm you are on Windows with Word or WPS installed, install pywin32 from a trusted source, and run commands only on documents you intend to read or modify. Use separate output files and backups for important documents.
VirusTotal
66/66 vendors flagged this skill as clean.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent can modify selected Word/WPS documents when invoked with edit commands.
The script performs user-requested document mutations and saves the result to a provided path. This is consistent with the skill purpose, but it can change or overwrite documents if used carelessly.
find.Execute(Replace=2) save_as(doc, args.save)
Use explicit output paths, keep backups for important documents, and avoid using the original file path as the save target unless you intend to overwrite it.
Installing the dependency pulls external code into the local Python environment.
The skill documents a manual, unpinned package install rather than an install spec. pywin32 is expected for Windows COM automation, but users should still verify the dependency source.
Python + **pywin32** (`python -m pip install pywin32`).
Install pywin32 from a trusted package index or managed environment, and consider pinning a known-good version if using this skill regularly.