ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Gws Gmail Watch

v1.0.12

Gmail: Watch for new emails and stream them as NDJSON.

0· 529·16 current·18 all-time
by@googleworkspace-bot

Install

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for googleworkspace-bot/gws-gmail-watch.

Previewing Install & Setup.
Prompt PreviewInstall & Setup
Install the skill "Gws Gmail Watch" (googleworkspace-bot/gws-gmail-watch) from ClawHub.
Skill page: https://clawhub.ai/googleworkspace-bot/gws-gmail-watch
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Required binaries: gws
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Bare skill slug

openclaw skills install gws-gmail-watch

ClawHub CLI

Package manager switcher

npx clawhub@latest install gws-gmail-watch
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The skill is instruction-only and simply invokes the 'gws' CLI to watch Gmail and stream NDJSON, which aligns with the name/description. Requiring the 'gws' binary is expected for this purpose.
!
Instruction Scope
SKILL.md explicitly directs the agent to read ../gws-shared/SKILL.md for auth, global flags, and security rules. That external file likely contains authentication steps and possibly references to credentials or config paths — a hidden dependency not included here. The instructions also create/use GCP Pub/Sub resources (topic/subscription) which imply access to GCP IAM and Gmail push configuration even though those details are not surfaced.
Install Mechanism
There is no install spec and no code files — lowest-risk delivery model. The only runtime requirement is that a 'gws' binary exists on PATH; the skill does not itself download or execute additional artifacts.
!
Credentials
The skill operates on Gmail and GCP Pub/Sub but declares no required environment variables or primary credential. Because it references another SKILL.md for auth, required credentials (Google OAuth tokens, service account keys, GCP project credentials) are hidden rather than declared, which is disproportionate and opaque.
Persistence & Privilege
The skill is not always-enabled and does not request persistent presence or elevated platform privileges. It does have options to create persistent GCP Pub/Sub resources, but that behavior is controlled by flags (e.g., --cleanup) and is within the user's control.
What to consider before installing
This skill appears to just wrap a 'gws' CLI command to watch Gmail, but it hides its authentication steps in a referenced ../gws-shared/SKILL.md that is not included. Before installing or running it: 1) inspect the referenced gws-shared SKILL.md to see exactly how auth is performed and where credentials/config are stored; 2) verify the provenance and integrity of the 'gws' binary (where it comes from and what permissions it requires); 3) confirm what Google/GCP credentials or service account scopes are needed (Gmail API, Pub/Sub publisher/subscriber) and grant only least privilege; 4) be cautious about Pub/Sub resources left behind — prefer using --cleanup or a disposable project/account for testing; 5) if you cannot review the shared auth file or trust the gws binary source, do not install or run this skill.

Like a lobster shell, security has layers — review code before you run it.

Plugin bundle (nix)
Skill pack · CLI binary · Config
SKILL.mdCLIConfig
CLI help (from plugin)
gws gmail +watch --help

Runtime requirements

Binsgws
latestvk97fqbgcz4crtrg57br5pnafqs83y6fd
529downloads
0stars
13versions
Updated 16h ago
v1.0.12
MIT-0
@googleworkspace-bot
latest
Download

gmail +watch

PREREQUISITE: Read ../gws-shared/SKILL.md for auth, global flags, and security rules. If missing, run gws generate-skills to create it.

Watch for new emails and stream them as NDJSON

Usage

gws gmail +watch

Flags

FlagRequiredDefaultDescription
--projectGCP project ID for Pub/Sub resources
--subscriptionExisting Pub/Sub subscription name (skip setup)
--topicExisting Pub/Sub topic with Gmail push permission already granted
--label-idsComma-separated Gmail label IDs to filter (e.g., INBOX,UNREAD)
--max-messages10Max messages per pull batch
--poll-interval5Seconds between pulls
--msg-formatfullGmail message format: full, metadata, minimal, raw
--oncePull once and exit
--cleanupDelete created Pub/Sub resources on exit
--output-dirWrite each message to a separate JSON file in this directory

Examples

gws gmail +watch --project my-gcp-project
gws gmail +watch --project my-project --label-ids INBOX --once
gws gmail +watch --subscription projects/p/subscriptions/my-sub
gws gmail +watch --project my-project --cleanup --output-dir ./emails

Tips

  • Gmail watch expires after 7 days — re-run to renew.
  • Without --cleanup, Pub/Sub resources persist for reconnection.
  • Press Ctrl-C to stop gracefully.

See Also

Comments

Loading comments...