Pptx
PassAudited by VirusTotal on May 12, 2026.
Overview
Type: OpenClaw Skill Name: pptx-2 Version: 0.1.1 The skill is classified as suspicious primarily due to the use of `LD_PRELOAD` in `scripts/office/soffice.py`. This technique injects a custom C library at runtime to intercept system calls, a highly privileged capability often associated with malicious activity, even if the current C code aims to benignly work around sandbox restrictions for LibreOffice. Additionally, `scripts/office/validators/redlining.py` uses `subprocess.run` to execute `git diff`, which, while seemingly controlled in this context, represents a risky capability for arbitrary command execution if not carefully managed.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If used on the wrong working directory or without a backup, cleanup could remove presentation components the user still wanted.
The documented workflow includes a cleanup script that deletes unreferenced files from an unpacked presentation directory. This is expected for PowerPoint editing, but it is still a local file mutation operation.
Clean: `python scripts/clean.py unpacked/` ... Removes slides not in `<p:sldIdLst>`, unreferenced media, orphaned rels.
Use the workflow on a copy of the presentation and confirm the unpacked directory is the intended one before running cleanup or packing.
Installing global packages can affect the local environment and relies on the safety of third-party npm packages.
The documentation suggests installing unpinned global npm packages for optional icon generation, while the registry has no install spec. This is user-directed and relevant to presentation creation, but it depends on external package provenance.
Install: `npm install -g react-icons react react-dom sharp`
Install optional packages only if needed, prefer pinned versions or a project-local environment, and review package sources before installation.
Private presentation content could be exposed to additional agent contexts if subagents are used.
The skill optionally suggests sharing slide file paths and editing tasks with subagents. This is purpose-aligned for parallel slide editing, but presentation content can be sensitive.
**Subagents:** If available, use them here ... Each slide is a separate XML file, so subagents can edit in parallel.
Use subagents only when appropriate for the sensitivity of the deck, and avoid parallel delegation for confidential presentations unless the environment’s data boundaries are understood.