ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Gws Gmail Read

v1.0.12

Gmail: Read a message and extract its body or headers.

0· 371·1 current·2 all-time
by@googleworkspace-bot

Install

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for googleworkspace-bot/gws-gmail-read.

Previewing Install & Setup.
Prompt PreviewInstall & Setup
Install the skill "Gws Gmail Read" (googleworkspace-bot/gws-gmail-read) from ClawHub.
Skill page: https://clawhub.ai/googleworkspace-bot/gws-gmail-read
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Required binaries: gws
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Bare skill slug

openclaw skills install gws-gmail-read

ClawHub CLI

Package manager switcher

npx clawhub@latest install gws-gmail-read
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
The declared purpose (read Gmail) matches the required binary 'gws' and the runtime examples. However the SKILL.md points to ../gws-shared/SKILL.md for auth/global flags; the registry metadata lists no required env vars or config paths. That is an inconsistency: authentication requirements are implied but not declared.
!
Instruction Scope
The instructions themselves simply call the gws CLI to read a message, which is in-scope. But they explicitly instruct the agent to read an external file (../gws-shared/SKILL.md) for auth and security rules. That external dependency is not present in the package metadata and may contain instructions to access credentials, config paths, or other system state — the runtime behavior is therefore underspecified and potentially broader than advertised.
Install Mechanism
This is an instruction-only skill with no install spec and no code files. Nothing is written to disk by the skill itself. Risk depends on the external 'gws' binary (not supplied here) rather than the skill bundle.
!
Credentials
The skill declares no required environment variables or credentials, yet it depends on authentication provided by a separate shared SKILL.md. Expect that OAuth tokens, service-account keys, or other credentials are required in practice; those credentials are not documented in this skill, which is disproportionate and opaque.
Persistence & Privilege
The skill does not request always:true, does not modify other skills' configs in the bundle, and is user-invocable only. Autonomous invocation is allowed (platform default) but there is no extra persistence or elevated privilege declared by this skill itself.
What to consider before installing
This skill itself is just documentation for the 'gws' CLI, but it defers authentication details to ../gws-shared/SKILL.md which is not included or declared. Before installing or enabling: (1) locate and read the referenced gws-shared SKILL.md to see exactly how credentials are provided and what env vars or config paths are used; (2) verify the 'gws' binary is trusted and from a reputable source; (3) confirm the OAuth/service-account scopes and ensure least privilege (only read-mail if that's all you need); (4) ensure the agent will not be granted broad filesystem access that would expose other credentials; (5) if you cannot inspect the referenced shared file or the gws client, treat this as a red flag and do not enable the skill. If you want higher assurance, request the publisher to include explicit declarations of required env vars/config paths and to bundle or reference a verified gws release URL.

Like a lobster shell, security has layers — review code before you run it.

Plugin bundle (nix)
Skill pack · CLI binary · Config
SKILL.mdCLIConfig
CLI help (from plugin)
gws gmail +read --help

Runtime requirements

Binsgws
latestvk974majnkwj5e05wwbgrvzxhed83z2ap
371downloads
0stars
13versions
Updated 23h ago
v1.0.12
MIT-0
@googleworkspace-bot
latest
Download

gmail +read

PREREQUISITE: Read ../gws-shared/SKILL.md for auth, global flags, and security rules. If missing, run gws generate-skills to create it.

Read a message and extract its body or headers

Usage

gws gmail +read --id <ID>

Flags

FlagRequiredDefaultDescription
--idThe Gmail message ID to read
--headersInclude headers (From, To, Subject, Date) in the output
--formattextOutput format (text, json)
--htmlReturn HTML body instead of plain text
--dry-runShow the request that would be sent without executing it

Examples

gws gmail +read --id 18f1a2b3c4d
gws gmail +read --id 18f1a2b3c4d --headers
gws gmail +read --id 18f1a2b3c4d --format json | jq '.body'

Tips

  • Converts HTML-only messages to plain text automatically.
  • Handles multipart/alternative and base64 decoding.

See Also

Comments

Loading comments...