← Back to Skills Marketplace
852
Downloads
0
Stars
0
Active Installs
2
Versions
Install in OpenClaw
/install snail-mail
Description
A slow-channel inbox for leaving your operator important messages. Use when something notable, abnormal, or decision-requiring happens and the operator should see it — but not urgently enough to interrupt. Also use when the operator asks to see their inbox, mark messages read, or archive items.
Usage Guidance
This skill is a simple, local inbox implemented in Node and appears to do only what it says: write/read messages at {workspace}/inbox/messages.json and render them for different channels. Before installing, consider: (1) choose a safe OPENCLAW_WORKSPACE location (don't point it at a directory with sensitive secrets) because messages are stored in plaintext JSON; (2) OPENCLAW_CHANNEL controls render formatting—set it appropriately; (3) the skill will potentially run during automated heartbeats and surface urgent unread items, so be comfortable with the agent proactively notifying you; (4) the metadata lists the env vars as required though the script has sensible fallbacks—this is a minor inconsistency but not malicious; and (5) if you want absolute assurance, inspect the included scripts/inbox.js file yourself (it contains no network calls or obfuscated code). Overall the package is coherent and low-risk for typical use.
Capability Analysis
Type: OpenClaw Skill
Name: snail-mail
Version: 1.0.2
The OpenClaw AgentSkills bundle for 'snail-mail' is benign. It provides a local, slow-channel inbox system for agent-to-operator messages, storing data in a JSON file within the `OPENCLAW_WORKSPACE`. The `SKILL.md` instructions guide the agent on when and how to use the inbox, and the `scripts/inbox.js` code implements standard file operations (read, write, atomic save) and message management. There is no evidence of data exfiltration, malicious execution, persistence mechanisms, or prompt injection attempts designed to subvert the agent's behavior beyond the skill's stated purpose. The script uses only built-in Node.js modules and includes HTML escaping for rendered output, demonstrating good security practices.
Capability Assessment
Purpose & Capability
Name/description match the implementation. The script provides an on-disk inbox (messages.json) and CLI for add/list/read/archive/render which fits the stated slow-channel inbox purpose. Required binary (node) and env vars (workspace, channel) are appropriate for local storage and presentation.
Instruction Scope
SKILL.md instructs the agent to run the included Node script for all inbox operations and to check unread urgent items during heartbeats. The instructions only reference the workspace path and OPENCLAW_CHANNEL (both declared) and do not ask the agent to read unrelated files or transmit data externally. The guidance to not add commentary when rendering is an operational preference, not a security issue.
Install Mechanism
There is no install spec (instruction-only with an included script). That keeps risk low: nothing is downloaded or installed automatically. The single included script is plain Node.js code with no external network calls or hidden install steps.
Credentials
The declared required env vars (OPENCLAW_WORKSPACE and OPENCLAW_CHANNEL) are reasonable for storage and channel auto-formatting. Minor inconsistency: the code falls back to process.env.HOME and allows an empty OPENCLAW_CHANNEL (defaults to text rendering); nevertheless requiring the env vars in metadata is not harmful but slightly disproportionate to the script's defaults.
Persistence & Privilege
Skill does not request always:true and does not modify other skills or system-wide settings. It writes only to a workspace subdirectory (inbox/messages.json). Autonomous invocation is allowed (platform default) and appropriate here since the skill is meant to be checked during heartbeats.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install snail-mail - After installation, invoke the skill by name or use
/snail-mail - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.2
Fix registry metadata: declare node in requires.bins and OPENCLAW_WORKSPACE/OPENCLAW_CHANNEL in requires.env via metadata.openclaw format
v1.0.1
Fix metadata: declare node as required binary, document OPENCLAW_WORKSPACE and OPENCLAW_CHANNEL env vars
Metadata
Frequently Asked Questions
What is Snail Mail?
A slow-channel inbox for leaving your operator important messages. Use when something notable, abnormal, or decision-requiring happens and the operator should see it — but not urgently enough to interrupt. Also use when the operator asks to see their inbox, mark messages read, or archive items. It is an AI Agent Skill for Claude Code / OpenClaw, with 852 downloads so far.
How do I install Snail Mail?
Run "/install snail-mail" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Snail Mail free?
Yes, Snail Mail is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Snail Mail support?
Snail Mail is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Snail Mail?
It is built and maintained by Memeothy (@dvdegenz); the current version is v1.0.2.
More Skills