ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Gws Gmail Triage

v1.0.12

Gmail: Show unread inbox summary (sender, subject, date).

0· 575·16 current·18 all-time
by@googleworkspace-bot
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The name/description (show unread inbox summary) aligns with requiring the 'gws' CLI. Requiring the gws binary is proportionate for a CLI-based Gmail helper.
!
Instruction Scope
The SKILL.md explicitly instructs the agent to 'Read ../gws-shared/SKILL.md for auth, global flags, and security rules.' That means runtime behavior depends on another file outside this skill; that file may contain auth instructions or reference credentials/config paths. The instructions themselves are otherwise minimal and read-only, but the external dependency creates an opaque surface.
Install Mechanism
Instruction-only skill with no install step — nothing is written to disk by the skill itself. This lowers install-time risk.
!
Credentials
The skill declares no required env vars or config paths, yet points to a shared SKILL.md for auth. That suggests credential access is expected but not declared here. The gws CLI likely uses local config or OAuth tokens; those credentials are not described, so it's unclear what secrets the agent will need or access.
Persistence & Privilege
always is false and the skill is user-invocable; it does not request permanent or elevated platform presence.
Scan Findings in Context
[no_regex_findings] expected: There are no code files; the regex scanner had nothing to analyze. That is expected for an instruction-only skill, but it removes an important signal about what the runtime will do.
What to consider before installing
This skill delegates authentication and global flags to '../gws-shared/SKILL.md' but does not include or declare those credentials here. Before installing, inspect the referenced gws-shared SKILL.md and confirm what auth it requires (OAuth tokens, local config files, or environment variables). Verify the provenance and trustworthiness of the 'gws' CLI on your system (where it came from, its documentation, and whether the triage command is truly read-only). If you can't review gws-shared or the gws binary, treat the skill as untrusted because it may cause the agent to read or use Gmail credentials not declared in this skill. To reduce risk, run gws commands manually first, or run the agent in an isolated environment with limited access to your actual Gmail credentials.

Like a lobster shell, security has layers — review code before you run it.

Plugin bundle (nix)
Skill pack · CLI binary · Config
SKILL.mdCLIConfig
CLI help (from plugin)
gws gmail +triage --help

Runtime requirements

Binsgws
latestvk974gqz7emeshs3zqeths7n7px83y6gj
575downloads
0stars
13versions
Updated 7h ago
v1.0.12
MIT-0
@googleworkspace-bot
latest
Download

gmail +triage

PREREQUISITE: Read ../gws-shared/SKILL.md for auth, global flags, and security rules. If missing, run gws generate-skills to create it.

Show unread inbox summary (sender, subject, date)

Usage

gws gmail +triage

Flags

FlagRequiredDefaultDescription
--max20Maximum messages to show (default: 20)
--queryGmail search query (default: is:unread)
--labelsInclude label names in output

Examples

gws gmail +triage
gws gmail +triage --max 5 --query 'from:boss'
gws gmail +triage --format json | jq '.[].subject'
gws gmail +triage --labels

Tips

  • Read-only — never modifies your mailbox.
  • Defaults to table output format.

See Also

Comments

Loading comments...