Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
help you to make annual work summary ppt
v1.0.0AI年终总结PPT生成器。用户输入姓名、年份、工作成果亮点和下一年度规划,自动分类整理内容,生成结构完整、排版专业的年终总结PPT文件(.pptx格式),并通过飞书发送给用户。
⭐ 0· 1.1k·10 current·12 all-time
byJay@lixiaojie-1012
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The stated purpose (generate a .pptx and send it to the user) is coherent with using pptxgenjs and writing files, but the SKILL.md references sending via 飞书 (Feishu) and uploading to a CDN while the skill declares no Feishu or CDN credentials. Also the instructions call for npm installs but the declared required binaries list only 'node' (npm is not listed). These omissions are inconsistent with the stated end-to-end capability.
Instruction Scope
Instructions explicitly direct writing a script to /tmp, running it via node, running npm install, executing the script with exec, uploading the generated file to a CDN, and sending a download link via Feishu/current channel. The flow does not ask to read unrelated files or hidden credentials, but it expects platform tools (exec, upload_to_cdn, channel/Feishu messaging) to be available and to have network access — this broad operational scope should be confirmed.
Install Mechanism
There is no formal install spec; instead the SKILL.md instructs running 'npm install pptxgenjs --prefix /tmp/pptx-pkg'. That will download code from the npm registry at runtime and write to /tmp (extract=true implicit). The skill didn't declare npm as a required binary nor provide an audited package source. Runtime npm installs are moderate-risk (network download + execution) and should be explicit.
Credentials
The skill declares no required environment variables or credentials, yet the narrative says it will send the PPT via Feishu and upload to a CDN. Those operations normally require API tokens/credentials. The absence of declared credentials is a mismatch: either the platform provides built-in upload/Feishu tools (not documented here) or the skill omitted necessary sensitive configuration.
Persistence & Privilege
The skill is instruction-only, always:false, and does not request persistent presence or modify other skills. Generating files under /tmp and /workspace is expected for this task and not a privilege escalation on its face.
What to consider before installing
This skill is plausible for making PPTs but has gaps you should clarify before installing: 1) Confirm whether the platform already provides 'npm', network access, an 'upload_to_cdn' tool, and a Feishu-messaging tool — if not, the skill will try to perform runtime npm installs and external uploads without declaring credentials. 2) Ask the author how Feishu/CDN auth is handled and whether any tokens will be stored; prefer explicit environment variables rather than implicit assumptions. 3) If you test it, do so with dummy data and in an isolated environment (so a runtime npm install can't affect sensitive systems). 4) If you cannot get satisfactory answers, consider rejecting or sandboxing the skill because it downloads & executes code at runtime and attempts external upload/send operations that require credentials not declared here.Like a lobster shell, security has layers — review code before you run it.
latestvk970y4k3w0zj7cf3pmbd6x4dp98200x6
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
📊 Clawdis
Binsnode