OfficeClaw
PassAudited by VirusTotal on May 12, 2026.
Overview
Type: OpenClaw Skill Name: officeclaw Version: 1.0.4 The officeclaw skill provides a legitimate integration with Microsoft Graph API for managing emails, calendars, and tasks. The documentation (SKILL.md) outlines clear security practices, including capability gates for write operations (disabled by default), a recipient allowlist for outbound emails, and secure local token storage. The instructions provided to the agent emphasize user confirmation for destructive actions and privacy respect, showing no signs of malicious intent or prompt injection attacks.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If the user grants broad scopes, the agent/CLI can access and change email, calendar, and task data in the connected Microsoft account.
The skill may require delegated Microsoft Graph permissions that can read and mutate personal Microsoft account data.
Full access (all features including send/delete): Mail.Read, Mail.ReadWrite, Mail.Send; Calendars.Read, Calendars.ReadWrite; Tasks.ReadWrite
Grant the minimum Microsoft Graph scopes needed, prefer read-only permissions when possible, and revoke the OAuth grant when the skill is no longer needed.
Accidental or poorly reviewed use could send messages or delete/alter account items if those gates and permissions are enabled.
The documented capability gates enable high-impact actions such as sending mail and deleting account data, though they are described as disabled by default.
OFFICECLAW_ENABLE_SEND=true # Allow sending/replying/forwarding emails; OFFICECLAW_ENABLE_DELETE=true # Allow deleting emails, events, and tasks
Keep send/delete disabled unless required, use the recipient allowlist when sending is enabled, and require explicit user confirmation for sends, deletes, and calendar changes.
The installed CLI package is outside the provided artifact review, so the user is trusting the PyPI package and its publisher.
The skill relies on installing an external package, and the provided artifact set does not include that package's code.
Install from PyPI: pip install officeclaw
Install from a trusted environment, consider pinning the expected version, and review the linked project or package provenance before granting OAuth access.
Email, calendar, and task data will be exchanged with Microsoft Graph as part of normal operation.
The skill communicates with Microsoft Graph, an external provider, to process account data; this is disclosed and purpose-aligned.
Requires Python 3.9+, network access to graph.microsoft.com, and one-time OAuth setup
Use the skill only for accounts and data you are comfortable connecting, and verify requested Microsoft consent scopes during OAuth login.