ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Ironclaw Outreach Sequencer

v1.0.0

Create and manage multi-step outreach sequences — LinkedIn messages, cold emails, and follow-ups with personalization. Use when asked to "send outreach", "cr...

0· 571·2 current·2 all-time
byPatrick Smith@aspenas
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
The skill claims to run multi-step outreach across LinkedIn and Gmail and to read/write lead profiles in DuckDB, but the registry metadata declares no credentials, no config paths, and no required binaries. The SKILL.md references a 'gog gmail' CLI and browser automation for LinkedIn and even shows a specific account email (patrick@candlefish.ai). Those capabilities normally require OAuth/API credentials, a browser automation capability, and a DuckDB file path; none are declared — this is a mismatch between claimed purpose and declared requirements.
!
Instruction Scope
Runtime instructions direct the agent to: open LinkedIn in a browser, search for recipients, type and send messages; run 'gog gmail send' and 'gog gmail reply' with a named account; read and update lead profiles in DuckDB; optionally perform web searches for company news. These steps involve interacting with a user mailbox, message threads, and a local database. The SKILL.md does not specify where the DuckDB lives, how Gmail/LinkedIn auth is obtained, or what browser automation stack is expected — giving the agent broad, underspecified discretion to access accounts and local data.
Install Mechanism
There is no install spec (instruction-only), which reduces installer risk. However, the instructions assume the presence of external tooling ('gog' CLI, DuckDB, and a browser automation environment). Because those dependencies are not installed or declared, the skill will either fail at runtime or silently depend on preinstalled tools, which is an operational/availability risk.
!
Credentials
The skill requests no environment variables or credentials in metadata but clearly requires mailbox access (Gmail), LinkedIn session/authentication, and read/write access to a DuckDB file. The presence of a hardcoded email address in examples increases risk/ambiguity. Required secrets (Gmail OAuth tokens, LinkedIn cookies/session, DB path) are not declared — this is disproportionate and under-specified.
Persistence & Privilege
The skill is not marked always:true and is user-invocable (normal). The SKILL.md includes a cron integration example for scheduled runs; that implies potential autonomous, periodic sending of messages if the user wires up scheduling. Autonomous invocation is platform-normal, but combined with the other concerns (undeclared credentials, account access) it increases the blast radius if configured without careful access controls.
What to consider before installing
Before installing or running this skill: (1) Require the author to declare exactly what credentials and config paths are needed (Gmail OAuth tokens, LinkedIn auth/cookies, DuckDB file path) and how those secrets will be provided and stored; do not proceed if credentials are not explicit. (2) Verify the 'gog' CLI and any browser-automation tooling the skill expects are trusted and installed deliberately — the skill has no install step. (3) Remove or replace any hardcoded account identifiers in the skill and confirm who 'patrick@candlefish.ai' refers to. (4) Test in an isolated account/environment first (use a sandbox Gmail and a test LinkedIn account) to confirm behavior and rate limits. (5) Ensure opt-out, CAN-SPAM, and LinkedIn ToS handling are enforced and log all sends. (6) If you want to proceed, request the author to add explicit requires.env entries (e.g., GMAIL_OAUTH_TOKEN, LINKEDIN_SESSION, DUCKDB_PATH) and document where data is stored and how long it is retained. If the author cannot justify these omissions, treat the skill as unsafe to enable with live accounts.

Like a lobster shell, security has layers — review code before you run it.

latestvk974j3jfqfsvz3ykxtm67vww8n81b2y8

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

📨 Clawdis

SKILL.md

Outreach Sequencer — Multi-Step Personalized Campaigns

Design, schedule, and execute multi-step outreach sequences across LinkedIn and email. Each message is personalized per lead using their profile data from DuckDB.

Sequence Templates

Template 1: LinkedIn Connection + Message

Day 0: Send LinkedIn connection request (with note)
Day 1: If accepted → Send intro message
Day 3: If no reply → Follow-up message
Day 7: If no reply → Break-up / value-add message

Template 2: Cold Email Sequence

Day 0: Initial cold email
Day 3: Follow-up (reply to original thread)
Day 7: Value-add email (case study, resource)
Day 14: Break-up email ("closing the loop")

Template 3: Multi-Channel

Day 0: LinkedIn connection request
Day 2: Cold email (if not connected on LinkedIn)
Day 4: LinkedIn message (if connected) OR email follow-up
Day 7: Final touch (whichever channel they engaged on)

Personalization Engine

Each message is generated per-lead using their DuckDB profile data. Use these variables:

VariableSourceExample
{first_name}Name field (split)"Jane"
{company}Company field"Acme Corp"
{title}Title field"CTO"
{mutual}Shared connections/background"Stanford"
{trigger}Why reaching out now"saw your Series A"
{value_prop}What you offer them"AI-powered analytics"
{pain_point}Their likely challenge"scaling engineering team"

Personalization Rules

  • Never use generic openers like "I hope this finds you well"
  • Reference something specific: recent post, company news, shared background
  • Keep LinkedIn messages under 300 chars (connection note limit)
  • Keep cold emails under 150 words (respect attention)
  • Vary language across leads — don't send identical messages to people at the same company
  • Match tone to seniority: C-suite gets concise/strategic, ICs get technical/peer-level

Message Generation Pattern

1. Read lead profile from DuckDB
2. Identify personalization hooks:
   - Shared background (school, company, location)
   - Recent company news (web search if needed)
   - Role-specific pain points
3. Select message template for sequence step
4. Generate personalized message
5. Store message + status in DuckDB

Execution

LinkedIn Messages (via Browser)

browser → open LinkedIn messaging
browser → search for recipient
browser → open conversation
browser → type personalized message
browser → send
→ Update DuckDB status: "Sent"

Email (via gog CLI)

gog gmail send \
  --to "{email}" \
  --subject "{subject}" \
  --body "{personalized_body}" \
  --account patrick@candlefish.ai

For follow-ups (reply to thread):

gog gmail reply \
  --thread-id "{thread_id}" \
  --body "{follow_up_body}"

Sequence Status Tracking

Track in DuckDB with these status fields:

FieldValuesNotes
Outreach StatusQueued, Sent, Replied, Converted, Bounced, Opted OutMain status
Sequence Step1, 2, 3, 4Current step in sequence
Last OutreachdateWhen last message was sent
Next OutreachdateWhen next step is due
Outreach ChannelLinkedIn, Email, BothActive channel
Reply ReceivedbooleanTrue if they responded
Thread IDtextGmail thread ID for email chains
-- Find leads due for next sequence step
SELECT "Name", "Email", "Outreach Status", "Sequence Step", "Next Outreach"
FROM v_leads
WHERE "Outreach Status" = 'Sent'
  AND "Reply Received" = false
  AND "Next Outreach" <= CURRENT_DATE
ORDER BY "Next Outreach";

Cron Integration

Set up automated sequence execution:

Schedule: Every 2 hours during business hours (9am-5pm Mon-Fri)
Action:
1. Query leads due for next step
2. For each due lead:
   a. Generate personalized message for their current step
   b. Send via appropriate channel
   c. Update status + advance step
   d. Set next outreach date
3. Report: "Sent 12 messages (8 LinkedIn, 4 email). 3 replies received."

Cron Job Setup (for OpenClaw)

{
  "name": "Outreach Sequencer",
  "schedule": { "kind": "cron", "expr": "0 9,11,13,15 * * 1-5", "tz": "America/Denver" },
  "sessionTarget": "isolated",
  "payload": {
    "kind": "agentTurn",
    "message": "Run outreach sequence check. Query DuckDB for leads with Next Outreach <= today. Send personalized messages for their current sequence step. Update statuses. Report results.",
    "timeoutSeconds": 300
  }
}

Safety & Compliance

  • Daily send limits: Max 50 LinkedIn connection requests/day, 100 messages/day
  • Email limits: Max 100 cold emails/day (avoid spam flags)
  • Opt-out handling: If someone replies "not interested" / "unsubscribe", immediately set status to "Opted Out" and never contact again
  • Bounce handling: If email bounces, mark as "Bounced" and try alternate email patterns
  • CAN-SPAM compliance: Include sender identity, physical address option, and opt-out mechanism in emails
  • LinkedIn ToS: Keep connection notes professional, don't spam InMails
  • Cool-down: If a lead hasn't replied after full sequence, wait 90 days before any re-engagement

Analytics

After each sequence run, track:

Active Sequences: 85 leads
├── Step 1 (Initial): 20 leads
├── Step 2 (Follow-up): 35 leads
├── Step 3 (Value-add): 18 leads
├── Step 4 (Break-up): 12 leads
│
Outcomes:
├── Replied: 23 (27% reply rate)
├── Converted: 8 (9.4% conversion)
├── Opted Out: 3 (3.5%)
├── Bounced: 2 (2.4%)
└── No Response (completed): 15 (17.6%)

Files

1 total
Select a file
Select a file to preview.

Comments

Loading comments…