OpenGemini CLI
PassAudited by ClawScan on May 10, 2026.
Overview
This skill appears to be a transparent wrapper around the local Gemini CLI, but users should notice that prompts and selected file contents may be sent through Gemini and that local Gemini authentication is required.
Install and authenticate the official Gemini CLI yourself, verify the `gemini` binary on PATH, and only send files or prompts that you are comfortable having processed by Gemini. Treat Gemini's output as advice, not as commands to run automatically.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Gemini can suggest commands, code, or plans that OpenClaw may later act on if reviewed and accepted.
The skill intentionally uses local command execution to call Gemini CLI, and it includes an explicit safety warning against executing model-generated shell blindly.
Use the locally installed `gemini` command through `exec` ... Do not blindly pipe Gemini-generated shell into execution.
Review Gemini output before applying edits or running commands, especially for destructive, external, or account-changing actions.
Use of this skill may operate under the user's Gemini account and its configured billing, logging, and data-handling settings.
The skill relies on the user's local Gemini CLI authentication/session storage even though registry metadata lists no primary credential.
The user should complete Gemini CLI authentication first ... Gemini CLI may warn that `keytar` is missing and fall back to FileKeychain.
Authenticate only with an intended Gemini account and understand where the CLI stores credentials; revoke or log out if the skill should no longer use that account.
Behavior depends on whichever `gemini` executable is found on the local PATH.
The skill depends on an existing `gemini` binary, but the registry metadata does not declare or pin that dependency or provide a provenance path for installing it.
Source: unknown; Homepage: none; Required binaries: none; Install specifications: No install spec
Install Gemini CLI from an official source, verify `which gemini` and `gemini --help`, and avoid using an unexpected binary on PATH.
Selected file contents may be processed by Gemini CLI and, depending on its configuration, sent to the Gemini service.
The helper reads the full contents of a user-specified local file and passes them into the Gemini CLI prompt.
content=$(cat "$file") ... exec gemini -p "... FILE: ${file}\n\nCONTENT:\n${content}"Use this helper only on files intended for Gemini review, and avoid sending secrets, credentials, private data, or large unbounded file dumps.