Google Tasks
PassAudited by ClawScan on May 10, 2026.
Overview
This looks like a legitimate Google Tasks integration, but it stores OAuth tokens and can create or delete tasks, so review its setup and permissions before use.
Install only if you are comfortable granting Google Tasks read/write access. Keep credentials.json and token.json private, verify dependencies before running npm or pip setup commands, and ask the agent to confirm list and task details before deleting tasks.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Anyone or any agent process using the stored token can view and modify the user's Google Tasks within the granted scope.
The skill requires a Google OAuth token with read/write Google Tasks access, which is necessary for the advertised create/delete functionality but grants real account authority.
Valid `token.json` with OAuth access token ... **Scopes required:** `https://www.googleapis.com/auth/tasks` (read + write)
Use a Google OAuth client you control, grant only the documented Tasks scope, and protect or remove token.json when no longer needed.
A mistaken invocation or ambiguous task number/title could delete a task from the user's Google account.
The delete script performs a real Google Tasks DELETE request once invoked; the behavior is disclosed but has no extra confirmation prompt in the script.
curl -s -X DELETE ... tasks.googleapis.com/tasks/v1/lists/$LIST_ID/tasks/$TASK_ID
List tasks first and confirm the exact list and task identifier before asking the agent to delete anything.
Running the helper can execute the system browser-opening command on the local machine.
The Node helper shells out to the OS browser opener for OAuth authentication. This matches the setup purpose, but it is still local command execution.
exec(`${start} "${authUrl}"`);Run the authentication helper only from the reviewed skill directory and only when you intend to authenticate.
Install-time prompts may not fully warn about the tools, packages, and credentials needed to use the skill.
The registry metadata under-declares requirements that the skill documentation and scripts rely on, including curl, jq, OAuth credentials, and Node/Python auth dependencies.
Required binaries (all must exist): none ... Primary credential: none ... No install spec — this is an instruction-only skill.
Review SKILL.md, README.md, package.json, and the auth scripts before installing dependencies or providing credentials.