OfficeClaw
PassAudited by ClawScan on May 1, 2026.
Overview
OfficeClaw appears purpose-aligned for Microsoft email, calendar, and task management, but it requires OAuth access and can perform high-impact account changes if the user grants those permissions.
Before installing, decide exactly which Microsoft account and permissions you want to grant. Prefer read-only scopes, use your own Azure app registration if you want more control, keep send/delete disabled unless necessary, configure the recipient allowlist if sending mail, and review or pin the PyPI package before authenticating.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If the user grants broad scopes, the agent/CLI can access and change email, calendar, and task data in the connected Microsoft account.
The skill may require delegated Microsoft Graph permissions that can read and mutate personal Microsoft account data.
Full access (all features including send/delete): Mail.Read, Mail.ReadWrite, Mail.Send; Calendars.Read, Calendars.ReadWrite; Tasks.ReadWrite
Grant the minimum Microsoft Graph scopes needed, prefer read-only permissions when possible, and revoke the OAuth grant when the skill is no longer needed.
Accidental or poorly reviewed use could send messages or delete/alter account items if those gates and permissions are enabled.
The documented capability gates enable high-impact actions such as sending mail and deleting account data, though they are described as disabled by default.
OFFICECLAW_ENABLE_SEND=true # Allow sending/replying/forwarding emails; OFFICECLAW_ENABLE_DELETE=true # Allow deleting emails, events, and tasks
Keep send/delete disabled unless required, use the recipient allowlist when sending is enabled, and require explicit user confirmation for sends, deletes, and calendar changes.
The installed CLI package is outside the provided artifact review, so the user is trusting the PyPI package and its publisher.
The skill relies on installing an external package, and the provided artifact set does not include that package's code.
Install from PyPI: pip install officeclaw
Install from a trusted environment, consider pinning the expected version, and review the linked project or package provenance before granting OAuth access.
Email, calendar, and task data will be exchanged with Microsoft Graph as part of normal operation.
The skill communicates with Microsoft Graph, an external provider, to process account data; this is disclosed and purpose-aligned.
Requires Python 3.9+, network access to graph.microsoft.com, and one-time OAuth setup
Use the skill only for accounts and data you are comfortable connecting, and verify requested Microsoft consent scopes during OAuth login.