ClawHub

文件总结 File Summary & Analysis

v1.0.0

Local document summary tool. Activate when user mentions "总结文件", "帮我总结", "总结文档", "分析文档" or provides a local file path (txt/docx/pdf/xlsx/xls).

0· 2.2k·46 current·47 all-time
byLeonThePro@leonthepro2012
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
medium confidence
Purpose & Capability
Name/description promise a local file summary tool; the code implements reading txt/docx/pdf/xlsx/xls and outputs extracted text for the agent to summarize. Required capabilities align with the stated purpose.
Instruction Scope
SKILL.md and file2sum.py limit actions to extracting the provided file path and printing its contents (errors prefixed with ❌). There are no instructions to read other files, environment variables, or to transmit data to external endpoints beyond what the platform's LLM will do with the extracted text.
Install Mechanism
There is no formal install spec; the script auto-installs Python packages at runtime via subprocess pip install (python-docx, pypdf, openpyxl, xlrd==1.2.0). Auto-installing packages from PyPI is coherent for parsing formats but is a side effect (network fetch, changes to the Python environment). The script suppresses pip output, which can hide install failures or messages.
Credentials
The skill requests no environment variables, credentials, or config paths. The only requested permission is file read access for the user-provided path and permission to execute Python—both proportional to the task.
Persistence & Privilege
always:false and no modifications to other skills or system configs. However, the script may install packages into the system/global Python environment (a persistence-like side effect) which can alter the host environment and may require network access or elevated privileges depending on the environment.
Assessment
The skill appears to do what it says: it reads the file you point it at and prints extracted text for the LLM to summarize. Before installing/use: (1) review the included file2sum.py yourself (it is small and readable); (2) avoid sending sensitive files unless you trust the environment and the agent's handling of extracted text; (3) run the tool inside a virtualenv/container or pre-install the required Python packages yourself to avoid unexpected global pip installs; (4) ensure your environment allows outbound network access (pip will fetch packages); (5) if you need higher assurance, request the author/source or host the code from a trusted repository rather than using an unknown source.

Like a lobster shell, security has layers — review code before you run it.

Pythonvk971fvxre0xjd35pwgtw27ry61828x7qanalysisvk971fvxre0xjd35pwgtw27ry61828x7qdocumentvk971fvxre0xjd35pwgtw27ry61828x7qdocxvk971fvxre0xjd35pwgtw27ry61828x7qfilevk971fvxre0xjd35pwgtw27ry61828x7qlatestvk971fvxre0xjd35pwgtw27ry61828x7qmultilingualvk971fvxre0xjd35pwgtw27ry61828x7qpdfvk971fvxre0xjd35pwgtw27ry61828x7qsummaryvk971fvxre0xjd35pwgtw27ry61828x7qtxtvk971fvxre0xjd35pwgtw27ry61828x7qxlsvk971fvxre0xjd35pwgtw27ry61828x7qxlsxvk971fvxre0xjd35pwgtw27ry61828x7q

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments