OfficeClaw
AdvisoryAudited by Static analysis on Apr 30, 2026.
Overview
No suspicious patterns detected.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If the user grants broad scopes, the agent/CLI can access and change email, calendar, and task data in the connected Microsoft account.
The skill may require delegated Microsoft Graph permissions that can read and mutate personal Microsoft account data.
Full access (all features including send/delete): Mail.Read, Mail.ReadWrite, Mail.Send; Calendars.Read, Calendars.ReadWrite; Tasks.ReadWrite
Grant the minimum Microsoft Graph scopes needed, prefer read-only permissions when possible, and revoke the OAuth grant when the skill is no longer needed.
Accidental or poorly reviewed use could send messages or delete/alter account items if those gates and permissions are enabled.
The documented capability gates enable high-impact actions such as sending mail and deleting account data, though they are described as disabled by default.
OFFICECLAW_ENABLE_SEND=true # Allow sending/replying/forwarding emails; OFFICECLAW_ENABLE_DELETE=true # Allow deleting emails, events, and tasks
Keep send/delete disabled unless required, use the recipient allowlist when sending is enabled, and require explicit user confirmation for sends, deletes, and calendar changes.
The installed CLI package is outside the provided artifact review, so the user is trusting the PyPI package and its publisher.
The skill relies on installing an external package, and the provided artifact set does not include that package's code.
Install from PyPI: pip install officeclaw
Install from a trusted environment, consider pinning the expected version, and review the linked project or package provenance before granting OAuth access.
Email, calendar, and task data will be exchanged with Microsoft Graph as part of normal operation.
The skill communicates with Microsoft Graph, an external provider, to process account data; this is disclosed and purpose-aligned.
Requires Python 3.9+, network access to graph.microsoft.com, and one-time OAuth setup
Use the skill only for accounts and data you are comfortable connecting, and verify requested Microsoft consent scopes during OAuth login.