v2.0.0

PPT from Template

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 8:19 AM.

Analysis

This skill is coherent for generating PPTs from a reference template, but users should notice that it runs local conversion/generation tools and may retain template-derived files for reuse.

GuidanceBefore installing, be comfortable with the skill reading PPT/PDF templates in the workspace, running local conversion and presentation-generation tools, and saving templates/style artifacts for reuse. Avoid confidential reference decks unless you are prepared to manage or delete the generated local files afterward.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Unexpected Code Execution

SeverityLowConfidenceHighStatusNote

SKILL.md

Generate PptxGenJS JavaScript applying extracted style. ... Run JS to produce `.pptx`.

The workflow includes executing generated JavaScript to build the presentation. This is central to the skill's purpose, but it is still local code execution users should expect.

User impactThe agent may run locally generated presentation-building code as part of creating the PPTX.

RecommendationUse the skill only in workspaces where running local presentation-generation code is acceptable, and review generated code if the deck content or environment is sensitive.

Agentic Supply Chain Vulnerabilities

SeverityLowConfidenceHighStatusNote

scripts/pptx_to_pdf.py

os.path.expanduser("~/.openclaw/skills/pptx/scripts/office/soffice.py") ... cmd = [sys.executable] + cmd

If LibreOffice is not found on PATH, the converter may run a Python helper from another local skill path. This is purpose-aligned, but its provenance depends on that separately installed pptx skill/helper.

User impactPPTX-to-PDF conversion may rely on a local dependency outside this skill's own files.

RecommendationEnsure LibreOffice or the referenced pptx skill helper is installed from a trusted source before using the conversion workflow.

Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Memory and Context Poisoning

SeverityLowConfidenceHighStatusNote

scripts/extract_style.py

elem["text_preview"] = text[:80] + ("..." if len(text) > 80 else "") ... elem["sample_cell"] = cell.text.strip()[:30]

The extractor records short text and table previews from the reference presentation into style data. This supports semantic layout analysis, but generated YAML may contain snippets of the source template's content.

User impactIf a reference deck contains confidential text, small excerpts may appear in local style extraction files.

RecommendationUse non-sensitive templates when possible, and clear generated style files such as /tmp/ppt_style/style_raw.yaml and saved workspace templates if they should not be retained.