Skywork PPT
PassAudited by VirusTotal on May 11, 2026.
Overview
Type: OpenClaw Skill Name: skywork-ppt Version: 1.0.9 The Skywork-ppt skill bundle is a legitimate tool for AI-powered PowerPoint generation and editing via the Skywork API. It includes scripts for uploading/parsing reference files, performing web searches, and manipulating local PPTX files using the `python-pptx` library. All network communication is directed to the official `skywork.ai` domain, and the remote processing of user data is explicitly disclosed in the documentation. The complex background execution and log-monitoring workflows (e.g., in `workflow_generate.md` and `run_ppt_write.py`) are designed to provide progress updates for long-running tasks rather than for malicious purposes.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Presentation source files, templates, PDFs, and the exact request text may leave the local machine and be processed remotely.
The skill explicitly sends user-selected files and the prompt text to the Skywork service for cloud processing.
Remote upload & processing: Layers 1/2/4/5 upload local files and send the full, verbatim user query to the Skywork service.
Use this skill only with content you are comfortable sending to Skywork, and avoid confidential decks unless your organization approves that service.
The skill needs access to a Skywork account/API key to upload and process files.
The code uses the configured Skywork API key as a bearer token when calling Skywork APIs.
req.add_header("Authorization", f"Bearer {api_key}")Provide a dedicated Skywork API key if possible, rotate it if exposed, and do not share it in chat messages or files.
Running the skill may change Python packages on the machine rather than using an isolated environment.
The runtime setup installs an unpinned PyPI dependency and uses --break-system-packages, which can affect the local Python environment.
$PYTHON_CMD -m pip install -q --break-system-packages python-pptx
Prefer running it in a virtual environment or container, and consider pinning the dependency version if you manage the environment.
A mistaken local operation could remove or reorder slides in the original deck.
Local delete/reorder operations can modify the original PPTX file by default.
If `-o` is not specified, the original file is overwritten
Keep a backup or request an explicit output path with -o when deleting or reordering slides.
A PPT job may continue running for several minutes after it starts, with progress stored in a temporary log.
The workflows start long-running background jobs for PPT processing and poll logs until completion.
Run in the **background**, then read the progress log file every 5 seconds until done.
Monitor long-running jobs and stop them manually if you no longer want the operation to continue.