Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
minimax-docx
v1.0.0Professional DOCX document creation, editing, and formatting using OpenXML SDK (.NET). Three pipelines: (A) create new documents from scratch, (B) fill/edit...
⭐ 0· 93·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
high confidencePurpose & Capability
The skill is explicitly built around the OpenXML SDK and the SKILL.md shows repeated dotnet CLI usage (e.g., `dotnet run --project scripts/dotnet/MiniMaxAIDocx.Cli ...`) and references PowerShell/bash. However the registry metadata lists no required binaries, no install spec, and no environment requirements. A consumer would legitimately need the dotnet SDK (and likely unzip, tar, bash/powershell) to use this skill — the metadata omission is an incoherence that should be corrected.
Instruction Scope
The SKILL.md instructions remain within the stated purpose (create/edit/format DOCX) and point the agent to many local reference files and sample C# code. They require running scripts (scripts/setup.sh, scripts/env_check.sh, docx conversion and preview scripts) and compiling/running C#; those are appropriate for this skill. However the instructions mandate running a first-time setup script and an env_check that may perform network operations or write files to disk — those actions are not described in the metadata and should be inspected before execution. Also the SKILL.md's 'MUST use this skill whenever...' language is a behavioral mandate that may cause the agent to invoke the skill broadly.
Install Mechanism
No formal install specification is provided (instruction-only), but the package includes a non-trivial setup script (scripts/setup.sh, ~16KB) and env_check.sh. Because there is no declarative install step, users/agents will run these scripts directly; setup.sh could download dependencies or write/compile code. That is a moderate risk if the script contacts untrusted endpoints — users should review the script contents before running.
Credentials
The skill does not request any environment variables, credentials, or config paths in the registry metadata and SKILL.md does not instruct access to unrelated secrets. This is proportional for a document-processing skill. Note: runtime compilation and dotnet package restore may access NuGet feeds (network) but that is normal and not a declared credential requirement.
Persistence & Privilege
The skill does not request permanent presence (always:false) and uses the platform defaults for autonomous invocation. It does not declare or attempt to modify other skills or global agent config files in the provided material.
What to consider before installing
This skill appears to be a genuine OpenXML/.NET DOCX toolset, but it has a clear metadata/behavior mismatch: the runtime instructions expect the dotnet CLI, bash/powershell, and a setup script, yet the registry lists no required binaries or install steps. Before installing or running: 1) Inspect scripts/setup.sh and scripts/env_check.sh (they will be executed). Look for network fetches, external URLs, curl/wget, or commands that write to system paths. 2) Ensure the dotnet SDK and any build tools come from a trusted source and are installed in a controlled environment (or sandbox). 3) If you can't review the setup script, run the skill in an isolated VM/container only. 4) If you want stricter control, ask the skill publisher to update metadata to declare required binaries (dotnet, unzip, bash/pwsh) and to provide an explicit, auditable install step (or a known release URL). 5) Consider disabling autonomous invocation until you are comfortable with the setup behavior. If you want, I can extract and summarize the contents of scripts/setup.sh and env_check.sh so you can decide whether to run them.Like a lobster shell, security has layers — review code before you run it.
latestvk9738xrqzmah78r8wx1e4gabt983mvew
License
MIT-0
Free to use, modify, and redistribute. No attribution required.