Email Triager
PassAudited by VirusTotal on May 12, 2026.
Overview
Type: OpenClaw Skill Name: afrexai-email-triager Version: 1.0.0 The `SKILL.md` file contains an instruction for the AI agent to 'Pair with an industry context pack' located at an external URL (https://afrexai-cto.github.io/context-packs). While the stated intent appears benign (providing domain-specific context), this introduces a dependency on an external, potentially dynamic, resource. An AI agent might attempt to fetch or process content from this URL, which could be leveraged for prompt injection, data exfiltration, or malicious execution if the external resource were compromised or contained harmful instructions. This represents a supply chain risk and a vulnerability, classifying it as suspicious rather than benign.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A malicious or manipulative email could include instructions aimed at the assistant; the user should ensure those instructions do not override their actual request.
The skill intentionally reads requests inside email bodies. That is purpose-aligned, but email text is untrusted input and should be treated as content to summarize or answer, not as instructions that control the agent.
When asked to triage, sort, or process emails... Generate a reply draft when... The email contains a direct question or request
Keep sender-provided email text as data only, and require user confirmation before taking any action beyond summarizing or drafting.
Personal, business, legal, financial, or confidential email contents may be exposed to the agent environment when pasted for triage.
The workflow expects potentially sensitive email contents to be placed into the agent context for summarization and drafting. No storage or exfiltration behavior is shown, but the data itself may be private.
"Triage these emails" (paste or forward them) ... Handles batch processing (dump 20 emails, get them sorted in seconds)
Paste only the messages needed for the task, redact secrets or regulated data where possible, and review any generated summaries or drafts before relying on them.
If a user adds an external context pack, that separate material may influence email handling and should be trusted independently.
The skill references optional external context material that is not included in the reviewed artifact set. Using it could change how emails are interpreted or drafted.
Pair with an industry context pack for domain-specific email handling (legal, healthcare, finance, etc.) at https://afrexai-cto.github.io/context-packs
Review any external context pack before pairing it with this skill, especially for regulated domains such as legal, healthcare, or finance.