gcal-pro - Google Calendar

What to consider before installing: - Functional summary: This is a Google Calendar integration that needs you to create a Google Cloud OAuth client and save client_secret.json to ~/.config/gcal-pro; it stores token.json (access/refresh tokens) and license.json (Pro flag) there. - Privacy & security: The skill will be able to read (free tier) and, if you activate Pro, create/edit/delete events. Only activate Pro if you trust the skill and the license key mechanism. Do not commit client_secret.json or token.json to source control. - OAuth behavior: Authentication runs a local webserver (opens your browser and listens on port 8080) — this is normal for InstalledAppFlow but be aware of the temporary local listener. - Dependencies: Install with pip install -r requirements.txt. The code dynamically uses requests in revoke logic but requests isn't listed; ensure your environment includes requests if you plan to use revoke. - Confirmation safeguards: The code prints a confirmation prompt for destructive actions; verify prompts are presented before allowing the skill to act on your calendar. - Review & provenance: The package includes placeholder links/contacts (gumroad-link, [your-email]). The source/origin is unknown — if you need higher assurance, review the included Python scripts yourself or prefer a skill from a known publisher. - If you install: keep client_secret.json and token.json private, inspect scripts for any modifications, and grant only the scopes you are comfortable with (calendar.readonly vs calendar.events). Overall this skill appears coherent with its stated purpose; no unexpected network endpoints or broad credential requests were found.