Auto Paper Writer
AdvisoryAudited by VirusTotal on Apr 20, 2026.
Overview
Type: OpenClaw Skill Name: auto-paper-writer Version: 1.0.0 The skill performs high-risk operations including executing PowerShell commands to download external files and running local binaries for LaTeX compilation. A significant concern is found in the cleanup logic of SKILL.md (Step 8), which uses broad wildcards to delete all .ps1 and .py files from the user's desktop, potentially causing unintended data loss. Additionally, the use of hardcoded absolute file paths (e.g., C:\Users\29064\Desktop) suggests the code was tailored for a specific environment or lacks proper input sanitization for general use.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Running the workflow as written could delete unrelated Desktop files, including personal Python scripts, PowerShell scripts, or versioned presentation files.
The cleanup command is not scoped to the paper project or files created by the skill. It force-deletes all matching files on the user's Desktop, which can remove unrelated scripts or presentations.
Remove-Item "$env:USERPROFILE\Desktop\*.ps1" -Force Remove-Item "$env:USERPROFILE\Desktop\*.py" -Force Remove-Item "$env:USERPROFILE\Desktop\*_v*.pptx" -Force
Do not run the cleanup commands as written. Restrict cleanup to a dedicated project/temp folder and delete only files the skill created, preferably after explicit user confirmation.
The workflow may fail or run unexpected local tooling if the user’s environment differs from the hardcoded examples.
The instruction-only skill relies on local Python/matplotlib and TeX Live tooling, while the registry metadata declares no required binaries. This is understandable for the stated purpose, but users should verify their local tools and paths before use.
使用 matplotlib 生成 300dpi 高质量图片 ... 使用 **TeX Live**(不是 Tectonic)编译
Declare and verify required local tools explicitly, and replace hardcoded paths with user-specific, confirmed paths.