Tmp
ReviewAudited by ClawScan on May 10, 2026.
Overview
This appears to be a real Google Workspace CLI, but the package identity is inconsistent and it bundles under-declared third-party Gmail gateway instructions and broad account-changing capabilities.
Before installing, verify that you trust the publisher and Homebrew formula, confirm that the `Tmp`/`gog` metadata mismatch is intended, authorize only the Google services you need, avoid the bundled Maton gateway instructions unless you specifically want that provider, and require explicit approval before any email sending, calendar changes, file sharing/deletion, or spreadsheet/document edits.
Findings (5)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A user may believe they are installing one skill while the artifacts identify a different one, making publisher and provenance checks less reliable.
The registry identity for the evaluated skill does not match the packaged skill name or metadata, and the source is listed as unknown. This makes it harder to verify what package the user is actually installing.
Registry: Name: Tmp / Slug: tmp / Version: 1.0.1; SKILL.md: name: gog; _meta.json: "slug": "gog", "version": "1.0.0"
Verify the publisher and Homebrew formula before installing; the skill publisher should align registry metadata, SKILL.md, and packaged `_meta.json` and remove unrelated bundled skills.
If those nested instructions are used, Gmail data and actions may pass through a third-party gateway rather than only the local CLI and Google APIs.
A bundled nested Gmail skill instructs agents to send Gmail API traffic through Maton's gateway using `MATON_API_KEY`, which is not part of the root `gog` CLI setup or declared root requirements.
Base URL: https://gateway.maton.ai/google-mail/{native-api-path} ... The gateway proxies requests to gmail.googleapis.com and automatically injects your OAuth token.Do not use the Maton gateway flow unless you intentionally trust that service; the package should disclose or remove this alternate authentication/data path.
An authorized agent could affect more parts of a Google account or Workspace than a user might expect from the short skill description.
The installed CLI exposes a much broader Workspace command surface than the root skill's Gmail/Calendar/Drive/Contacts/Sheets/Docs description, including many services with read and mutation capabilities.
Fast, script-friendly CLI for Gmail, Calendar, Chat, Classroom, Drive, Docs, Slides, Sheets, Forms, Apps Script, Contacts, Tasks, People, Groups (Workspace), and Keep
Authorize only the services you need, use least-privilege scopes, and require confirmation for any send, share, delete, update, or publish action.
Installing and authorizing this skill can give the agent access to sensitive email, calendar, drive, contact, document, and spreadsheet data.
The expected setup grants the CLI OAuth access to multiple Google Workspace services and stores credentials/tokens for later use.
`gog auth credentials /path/to/client_secret.json` ... `gog auth add you@gmail.com --services gmail,calendar,drive,contacts,sheets,docs`
Use a dedicated OAuth client/account where possible, review requested scopes, prefer read-only scopes when sufficient, and revoke tokens when no longer needed.
Using email tracking may collect recipient interaction events through an external backend.
The CLI includes optional email-open tracking that uses an external worker backend. This is disclosed and appears user-directed, but it creates an external data flow.
Email tracking - track opens for `gog gmail send --track` with a small Cloudflare Worker backend
Only use `--track` when appropriate and permitted, and review the worker deployment, retention, and access controls.