KallyAI Executive Assistant (Claude Code)
v2.0.0KallyAI Executive Assistant — AI that handles phone calls (outbound + inbound), email, bookings, research, errands, multi-channel messaging, and phone number...
⭐ 0· 345·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The name/description (phone calls, email, bookings, etc.) align with the included CLI code and the extensive API reference: the tool uses OAuth and calls api.kallyai.com to perform those actions. However the registry metadata claims no dependencies or env vars while the shipped Python code requires the httpx package and implicitly requires Python — this mismatch between declared requirements and actual code is unexpected and worth noting.
Instruction Scope
SKILL.md and the CLI code instruct the user to run local Python commands and perform OAuth sign-in via a browser with a localhost callback; the code only references local token storage (~/.kallyai_token.json) and the API domain. The instructions do not ask the agent to read unrelated system files or exfiltrate arbitrary data. Opening a localhost callback and saving tokens is within the expected scope for a CLI that performs account actions.
Install Mechanism
There is no install spec in the registry, but the Python scripts require an external dependency (httpx). The mismatch means users may run the script without satisfying dependencies or without a clear install process. No packaged release or verified install source is provided; code will be executed locally from the skill bundle, so users should be aware they're running third-party Python code with network access.
Credentials
The skill declares no required env vars or primary credential because it uses OAuth. That is coherent. However the OAuth token grants broad scopes (email read/write, calls read/write, billing/manage, recordings/transcripts access). Tokens and refresh tokens are stored on-disk at ~/.kallyai_token.json with 0600 perms — convenient, but this creates persistent credentials on the host which other processes or backups might access if misconfigured. The breadth of scopes is functionally justified by the described features but increases the sensitivity of the stored tokens.
Persistence & Privilege
The skill does not request always:true and does not modify other skills; autonomous invocation is allowed (default) but not unusual. It does persist credentials to a local file and will reuse/refresh them across runs, which is expected for a CLI but means the skill has ongoing access to the user's account until tokens are revoked.
What to consider before installing
This package contains runnable Python code that will open your browser to sign in and then store an OAuth access/refresh token at ~/.kallyai_token.json. Before installing or running: 1) Inspect the scripts locally (you already have them) — do not run code you don't review. 2) Note the missing declared dependency (httpx) and ensure you install packages from trusted sources or run inside an isolated environment (virtualenv or container). 3) Be aware the token grants broad access (email, calls, billing, recordings); if you proceed, review the exact OAuth scopes during sign-in and revoke the token from your account if you stop using the tool. 4) Prefer running in a disposable VM/container if you want to test functionality safely. 5) The skill's source and homepage are not provided — lack of provenance reduces trust; prefer tools with a verifiable upstream and published releases.Like a lobster shell, security has layers — review code before you run it.
latestvk973qtyayet3d63hf3v4sk9tph81s7w8
License
MIT-0
Free to use, modify, and redistribute. No attribution required.