geo-optimization-cn
v1.0.0企业营销内容智能生成器。功能:1) 根据公司名称和行业生成搜索词前缀/后缀各5个;2) 生成10-15个行业问答词;3) 将Word资料转换为GEO优化的纯Q&A知识库(无分类、无关键词);4) 从Word文档提取企业6大关键信息(纯文本、无表格)。
⭐ 0· 96·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name/description (generate search/QA content and extract key company info from Word) align with the provided scripts and SKILL.md. Declared dependencies (markitdown for reading Word via uv tool and python-docx for Word output) match the documented functionality. No unrelated binaries, env vars, or config paths are requested.
Instruction Scope
Instructions are narrowly scoped to running the included Python scripts on local Word files and converting markdown to Word. The SKILL.md/quickref describe a manual workflow where the script generates prompts which the user then submits to Claude; this means the tool expects you to copy potentially sensitive document text into an external LLM—an explicit privacy/data-exfiltration risk that is consistent with the workflow but should be considered by users. The scripts and docs do not instruct reading unrelated system files or env vars.
Install Mechanism
No automated install spec is included (instruction-only skill). Dependencies are installed via uv tool (markitdown) and pip (python-docx), both reasonable for the described tasks. There are no downloads from arbitrary URLs or archive extraction in the manifest.
Credentials
The skill requests no environment variables or credentials (proportionate). However, the workflow depends on sending document content to an external LLM (Claude) for analysis; though credentials are not required by the skill itself, using the workflow will expose potentially sensitive company data to whichever model/service you use. Also the Python code imports subprocess — likely to invoke markitdown or other local tools — so verify the code path that builds subprocess commands to ensure no untrusted data is interpolated into shell commands.
Persistence & Privilege
The skill does not request permanent presence (always: false) and does not modify other skills or system-wide settings. It operates as a local, invoked script without elevated or persistent privileges.
Assessment
This skill appears to do what it claims (generate search/QA terms and extract info from Word docs). Before installing/using: 1) Review the full business_content_generator.py for any subprocess calls that interpolate file contents into shell commands — avoid running if it shells untrusted input. 2) Remember the workflow requires copying document content into an external LLM (Claude) — do not send sensitive or regulated data (PII, financials, secrets) unless your data-sharing policy allows it. 3) Prefer running the scripts in an isolated environment (virtualenv/container) and install markitdown and python-docx from official sources. 4) If you need an automated end-to-end pipeline, require explicit audit of any code that might call external APIs or spawn processes; otherwise use the provided manual prompt workflow so you control what is sent externally.Like a lobster shell, security has layers — review code before you run it.
latestvk976tyz1etvycmctqjj4cgnghx83gqqc
License
MIT-0
Free to use, modify, and redistribute. No attribution required.