123
Security checks across static analysis, malware telemetry, and agentic risk
Overview
This appears to be a local PowerPoint-generation skill with minor packaging gaps around dependency installation and the default template file.
Before installing, confirm you trust the package source, install python-pptx in a controlled environment, and provide a trusted PPT_Template.pptx if you want the default corporate styling. The supplied artifacts do not show malicious behavior.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
You may need to install a Python package before the skill works, and dependency behavior can vary by environment or package version.
The skill requires a manual Python dependency install even though no install spec is declared. This is purpose-aligned for PPT generation, but users should understand they are adding an external package.
python3 -m pip install -r requirements.txt
Install dependencies from a trusted package index, preferably in an isolated environment, and consider pinning or reviewing the python-pptx version used.
The skill may not work as advertised until the expected template file is supplied, and corporate branding depends on that external local template.
The packaged files do not include the default PPT_Template.pptx that SKILL.md and manifest.yaml expect, so the default branding template must come from elsewhere.
7 file(s): requirements.txt, README.md, manifest.yaml, SKILL.md, src/index.py, assets/demo_blocks.xml, tools/extract_page_catalog.py
Verify that PPT_Template.pptx is present in the skill directory and comes from a trusted corporate or user-approved source before using the generator.