cli-anything-wps
Pass
Audited by Gen Agent Trust Hub on Jun 13, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill implements a CLI tool
cli-anything-wpsthat automates WPS Office applications (Writer, Calc, and Impress) using Windows COM automation objects (KWPS.Application,KET.Application,KWPP.Application). This allows for programmatic control of office documents through shell commands. - [EXTERNAL_DOWNLOADS]: The skill requires the
pywin32Python package, which is a standard and well-known library used for accessing Windows APIs and COM objects. This is a legitimate dependency for the stated functionality. - [DATA_EXPOSURE]: The tool handles file paths for opening and saving documents (e.g.,
report.docx,data.json). These are standard operations for a document management utility and do not involve unauthorized access to sensitive system directories. - [SAFE]: No malicious patterns such as prompt injection, obfuscation, or data exfiltration were detected. The skill's behavior is consistent with its described purpose of providing a structured interface for office automation.
Audit Metadata