Recipe Watch Drive Changes
PassAudited by VirusTotal on May 11, 2026.
Overview
Type: OpenClaw Skill Name: recipe-watch-drive-changes Version: 1.0.12 The skill bundle provides a recipe for monitoring Google Drive changes using the 'gws' CLI tool. The instructions in SKILL.md describe standard administrative tasks such as creating, listing, and renewing event subscriptions via Google Cloud Pub/Sub, with no evidence of malicious intent, data exfiltration, or prompt injection.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If run with the wrong Google account or excessive permissions, the subscription could monitor Drive resources beyond what the user intended.
Creating, listing, and renewing Google Workspace Events subscriptions requires operating through the user's Google Workspace authority.
Create subscription: `gws events subscriptions create --json '{...}'`Run it only with the intended Google account and limit Workspace permissions to the Drive resource that should be watched.
Anyone with access to the chosen Pub/Sub topic or its subscriptions may be able to receive Drive event payloads.
Drive event notifications, including resource data, are configured to be delivered to a Google Cloud Pub/Sub topic.
"notificationEndpoint": {"pubsubTopic": "projects/PROJECT/topics/TOPIC"}, "payloadOptions": {"includeResource": true}Use only a Pub/Sub topic you control, restrict IAM access, and keep `includeResource` enabled only if the resource payload is needed.
Drive monitoring can continue after the initial setup if the subscription is renewed.
The recipe supports renewing the subscription, indicating an ongoing monitoring lifecycle.
Renew before expiry: `gws events +renew --subscription SUBSCRIPTION_ID`
Track created subscriptions, renew only those still needed, and remove subscriptions when the watch is no longer desired.