docx-md
PassAudited by ClawScan on May 1, 2026.
Overview
This DOCX helper is coherent and purpose-aligned, but users should notice that it sends document content into the model workflow and can create or finalize edited Word files.
This appears safe for its stated purpose if you are comfortable using an AI workflow on the selected DOCX files. Before installing or using it, confirm that the documents are suitable for the model/provider involved, keep original copies, review tracked changes carefully, and only finalize when you intentionally want comments and revisions removed.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If used on contracts or business documents, the agent can produce a changed version or a clean final version with review history removed.
The skill can write edited DOCX files and remove revisions/comments during finalization. This is disclosed and central to the skill, but it is high-impact for important documents.
Modify – apply AI-returned edits to the docx ... Finalize – When the user confirms, run finalize to accept all revisions and remove all comments.
Keep backups, write to a new output path, review tracked changes before relying on them, and only run finalization after explicit user confirmation.
Confidential document text and comments may be included in prompts or model context during review.
The documented pipeline places DOCX body text and comments into the model context for review. This is expected for AI document review, but users should treat the document content as shared with the model workflow.
Parse `word/document.xml` (`w:body` only) and `word/comments.xml` ... Send the output + task prompt to the model
Use this only with documents appropriate for the configured model/provider, and redact or avoid sensitive documents when that model workflow is not approved.
Different installations may pull different package versions, which can affect behavior or supply-chain exposure.
The skill depends on third-party Python packages with lower-bound version ranges rather than exact pinned versions. This is common for Python tools, but dependency versions may vary between installs.
lxml>=4.9.0 docx-revisions>=0.1.3
Install dependencies from trusted package sources and consider pinning or reviewing exact versions in controlled environments.