desktop-automation-100per100-local

This skill appears to do what it claims (local desktop automation) but is inherently high-risk because it records and replays all keyboard and mouse activity. Before installing: - Don’t record or store any sensitive input (passwords, credit cards, authentication tokens). Recorded macros and logs are stored locally and can contain raw keystrokes and window titles. - Treat recorded_macro/ and ~/.openclaw/skills/desktop-automation-logs/ as sensitive data stores; restrict filesystem permissions and consider encrypting backups. The skill supports AES-protected macros, but the presence of that feature means users might be tempted to embed secrets — avoid doing so. - Do not enable autonomous or unattended execution of macros you did not author and review carefully every macro file before playback. A macro that types key sequences can open terminals or web browsers and perform destructive or exfiltrative actions even though the skill has no network calls itself. - The 'safe mode' is pattern-based and easily bypassed (GUI-driven actions, obfuscated typing, or multi-step sequences). Do not rely on it as a security boundary. - Prefer testing with dry_run=true and manual supervision. Consider running the skill in a restricted, sandboxed account or VM if you need to run untrusted macros. - Audit the full source before use (especially files omitted/truncated in the provided dump). If you plan to allow other users or the agent to invoke the skill autonomously, consider disabling autonomous invocation or adding stronger authorization controls. Confidence is medium because some files were truncated in the provided file dump; a complete line-by-line review of all source files would increase confidence and could surface any hidden network calls or persistence mechanisms not visible in the excerpts.

These patterns may indicate risky behavior. Check the VirusTotal and OpenClaw results above for context-aware analysis before installing.