v1.0.0

工作报告PPT生成技能

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 7:01 AM.

Analysis

This skill appears to be a straightforward PPT generator that writes a local presentation file and does not show hidden data access, credential use, network calls, or destructive behavior.

GuidanceThis looks safe for normal use as a local PPT generator. Before installing any missing dependency, make sure python-pptx comes from a trusted source, and choose the output path carefully to avoid overwriting an existing presentation.

Findings (1)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Agentic Supply Chain Vulnerabilities

SeverityInfoConfidenceHighStatusNote

scripts/generate_ppt.py

from pptx import Presentation

The script depends on python-pptx, while the supplied install information says there is no install spec. This is purpose-aligned but leaves dependency installation and provenance outside the artifacts.

User impactIf python-pptx is not already installed, the user may need to install it separately and should use a trusted package source.

RecommendationAdd an install specification or dependency declaration that pins or clearly names python-pptx, or instruct users to install it from a trusted package index.