ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Ms365 Cli

v1.1.0

Manage Microsoft 365 Emails and Calendar using the ms365 CLI. Trigger this skill when the user needs to "read my email", "send an email", "search emails", "c...

0· 34·0 current·0 all-time
byPritesh@thecfguy
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description (MS365 email & calendar management) match the SKILL.md instructions, which explicitly call the ms365 CLI for listing/reading/searching/sending email and calendar operations. There are no unrelated env vars, binaries, or config paths requested.
Instruction Scope
Instructions constrain the agent to run ms365 CLI commands via the bash tool and to prompt the user to perform interactive authentication. The SKILL.md does not instruct reading unrelated files or exfiltrating data. It does rely on the agent being able to execute shell commands (normal for CLI-based skills).
Install Mechanism
This is an instruction-only skill with no install spec or bundled code. The SKILL.md asks the user to install the ms365 npm package (or use npx). There is no arbitrary download or archive extraction performed by the skill itself.
Credentials
The skill declares no required env vars or credentials (expected). However, it depends on an existing ms365 authentication session (Azure AD app + ms365 auth login). If the user has already authenticated locally, the agent can use those stored tokens via the ms365 CLI to access mail/calendar — this is expected but important for users to understand.
Persistence & Privilege
always is false and there is no install-time persistence. The skill can be invoked autonomously by the agent (platform default), which is typical; combined with an existing authenticated ms365 session, that allows the agent to act on the user's mailbox when invoked.
Assessment
This skill is coherent with its description: it relies on the ms365 CLI and your existing Microsoft/Azure AD authentication. Before enabling it, (1) confirm you trust the agent to access your mail/calendar if you have an active ms365 login — the agent will be able to read/send/move/delete messages using the CLI; (2) install the ms365 CLI from a trusted source (verify the npm package and publisher) and complete the interactive ms365 auth login yourself; (3) prefer creating an Azure AD app with minimal delegated permissions and use the device-code flow as documented; (4) restrict agent autonomy or require manual confirmation for sensitive actions (send/delete) if you want to prevent unintended operations; and (5) revoke the ms365 CLI tokens or logout (ms365 auth logout) if you later want to remove the agent's access. No regex scan findings were present, but that is expected for an instruction-only skill.

Like a lobster shell, security has layers — review code before you run it.

latestvk973fekt4r7peevsg9brn6rt3x846vfy

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments