Back to skill
Skillv0.1.0
ClawScan security
Word Automation · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 11, 2026, 8:33 AM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code and instructions match its stated purpose (automating Word/WPS via COM); nothing in the package requests unrelated credentials or external installs, though you should avoid opening untrusted documents because Office can execute macros or external content.
- Guidance
- This package appears coherent and implements what it claims: a local Python script that automates Word/WPS via COM. Before installing/running it: 1) ensure you run it on a Windows machine with Office or WPS and install pywin32 as instructed; 2) only open trusted documents—automatically opening untrusted Word files can trigger macros or external content and may be dangerous; 3) the skill will read and modify the files you point it at (it can overwrite outputs), so back up important documents; 4) there are no network calls or credential requests in the code, but if you have concerns, inspect the script locally or run it in a VM/sandbox first.
Review Dimensions
- Purpose & Capability
- noteName/description, SKILL.md, and the bundled Python script all consistently implement Word/WPS automation via pywin32 COM. One minor metadata inconsistency: registry metadata lists no OS restriction while SKILL.md and the script require Windows and Word/WPS; otherwise required components (pywin32, Word/WPS) are proportional to the stated purpose.
- Instruction Scope
- okSKILL.md instructs the agent to run the local Python script on specified document paths and to install pywin32. The instructions do not request unrelated files, environment variables, or outbound endpoints; they are scoped to single-document editing operations as advertised.
- Install Mechanism
- okThere is no install spec—this is instruction-only with an included script. SKILL.md asks the user to pip-install pywin32 (a reasonable, minimal dependency). No remote downloads or obscure installers are used.
- Credentials
- okThe skill declares no required environment variables or credentials and the code does not read environment secrets. Requested resources are limited to local files and a local Office application.
- Persistence & Privilege
- okalways is false and the skill does not modify other skills or global agent config. It runs locally when invoked and does not attempt to persist elevated privileges or global changes.