Office Generator Py
PassAudited by ClawScan on May 1, 2026.
Overview
This looks like a straightforward Office document generator, with the main caution that it runs local Python scripts and installs unpinned Python packages on first use.
Before installing, be comfortable running the bundled Python scripts and installing their dependencies. Use a safe output directory, review or pin packages if reproducibility matters, and only include local image paths that you intend to embed in the generated Office file.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Using the skill runs local Python scripts on your machine to install dependencies and generate files.
The skill explicitly asks the user/agent to run bundled Python setup code. This is expected for a Python-based Office generator, but it means use of the skill executes local code.
Install Python dependencies into the bundled virtualenv: ```bash python3 skills/office-generator-py/scripts/setup_engine.py ```
Run it only from a trusted copy of the skill, preferably as a normal user in an isolated environment.
Future installs could pull different dependency versions than the author tested, which slightly increases supply-chain and reproducibility risk.
The dependency list uses package names without pinned versions, so first-run setup will resolve whatever versions are current from the package source at install time.
python-docx docxtpl openpyxl XlsxWriter python-pptx pydantic
If using in a sensitive environment, pin and review dependency versions or install from a trusted package mirror.