ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

PPT to Video(汇报视频生成)

v1.4.0

将PPTX/PDF/HTML与背景材料自动匹配,生成1280×720分辨率、带有智能风格识别和口语化TTS的播报视频。

0· 54·0 current·0 all-time
by@vincentlau2046-sudo
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name/description match the shipped code and instructions: the scripts collect slides and markdown, perform matching, call TTS and ffmpeg/LibreOffice for screenshots and composition. However the code embeds a hard-coded OUTPUT_BASE (/home/Vincent/.openclaw/...) and SKILL.md examples reference that same local path, which is unrelated to the general purpose and indicates the package was packaged from a specific developer environment without sanitization.
!
Instruction Scope
SKILL.md and generate.js instruct the agent to recursively scan arbitrary input directories (and 'note' folders), copy matched files into a temporary project folder, and run external tools. That scanning/copying can pick up unrelated or sensitive files if the user points the skill at a large project or home directory. The instructions also instruct installing and using edge-tts (network TTS) and running local binaries (libreoffice, pdftoppm, ffmpeg). This broad file access is within the apparent goal but is expansively scoped and may be surprising to non-technical users.
Install Mechanism
No install spec is provided (instruction-only), and the SKILL.md lists standard native dependencies (node, pip edge-tts, ffmpeg, LibreOffice, poppler-utils, ImageMagick). Nothing is downloaded from an untrusted URL in the manifest. Risk is from executing local commands, not from an installer.
Credentials
The skill requests no environment variables or credentials. However it depends on edge-tts (a network TTS client) which will contact external TTS services — the SKILL.md does not call this out as sending content to remote servers. The code will copy arbitrary files into the temp project and write output to a default hard-coded home path unless overridden; that file I/O is expected but may expose data if outputs are later shared.
Persistence & Privilege
The skill is not always-enabled and does not request special platform privileges. It creates temp project folders and writes outputs to disk (normal for this type of tool). There is no evidence it modifies other skills or global agent configuration.
What to consider before installing
This skill appears to implement PPT→video generation as advertised, but review and take precautions before running: - Inspect generate.js for any places it constructs shell commands (execSync) using filenames. If filenames are interpolated into shell commands without sanitization, they can cause command injection; prefer commands invoked with argv arrays. - Don't run the tool pointed at your entire home or repository root — the script recursively scans and copies .md/.pptx/.pdf/.txt files and will therefore gather unrelated or sensitive documents. Point it only at a trusted folder. - Change the default OUTPUT_BASE or supply --output to avoid writing into the hard-coded /home/Vincent/... path left in the script. - Understand that edge-tts is a network TTS client: your text will likely be sent to external TTS services (Microsoft Edge TTS) for synthesis. If content is confidential, use an offline TTS engine or review the TTS client behavior. - Run the skill in an isolated environment (container/VM) the first time, and confirm the external commands it invokes (libreoffice, pdftotext, ffmpeg) are the expected ones. If you need a deeper audit, provide the full generate.js (untruncated) so execSync usages and any network calls can be inspected.
scripts/generate.js:468
Shell command execution detected (child_process).
Patterns worth reviewing
These patterns may indicate risky behavior. Check the VirusTotal and OpenClaw results above for context-aware analysis before installing.

Like a lobster shell, security has layers — review code before you run it.

latestvk976eqb957jtvk87s4q22fnzwn84jdsy

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments