← Back to Skills Marketplace
606
Downloads
2
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install thrd-skill
Description
Provision a dedicated inbox for your AI agent and manage email safely via thrd.email. Includes instant onboarding, inbound polling, reply/send (idempotent +...
Usage Guidance
This skill appears to do exactly what it claims: provisioning and managing an isolated agent inbox on thrd.email. Before installing, verify the skill source/owner (no homepage is listed and the source is 'unknown'), and prefer installing/testing in a sandboxed runtime. Store THRD_API_KEY in your platform's secret manager rather than as a literal env var in shared shells or logs. Be aware that onboarding prints the new api_key to stdout (machine-readable) — if your runtime captures stdout to logs, copy the key immediately into your secret store and rotate it if needed. Review and approve the small pip dependency (requests). If you require stricter containment, run the scripts in an isolated environment and confirm that the default cache (.cache) and cursor files are stored where you expect.
Capability Analysis
Type: OpenClaw Skill
Name: thrd-skill
Version: 1.2.7
The skill bundle is designed for managing email via thrd.email and exhibits no malicious intent. It correctly handles API keys by reading them from environment variables and explicitly warns against writing them to disk (`scripts/onboard.py`, `SKILL.md`). The most potentially risky component, `scripts/poll_daemon.py`, which allows executing a command via `--on-events`, uses `shlex.split` and `subprocess.run(..., shell=False)` to safely execute commands without shell injection, a fact explicitly documented in `SKILL.md` and `references/api.md`. All network requests are directed to the legitimate `api.thrd.email` domain, and there is no evidence of data exfiltration, persistence mechanisms, or prompt injection attempts against the AI agent.
Capability Assessment
Purpose & Capability
Name/description (provision and manage an agent inbox) align with the requested resources: python3 and a single service API key (THRD_API_KEY). Required binaries, env var, endpoints, and included scripts are consistent with an email API client and onboarding/polling functionality.
Instruction Scope
SKILL.md only instructs use of included scripts and controlled API endpoints (api.thrd.email) and explicitly warns not to write API keys to disk. One operational risk: scripts/onboard.py prints the newly provisioned api_key to stdout as machine-parsable JSON (then asks user to store it in a secret manager). That is convenient but means the API key could be captured in logs or stdout collectors if the runtime captures stdout; users should treat that output as sensitive.
Install Mechanism
No complex install procedure; metadata suggests running 'pip install -r requirements.txt' which only pulls 'requests' from PyPI. This is a standard, expected dependency for these scripts and not disproportionate.
Credentials
Only THRD_API_KEY is required and used where expected (checkout.py and poll_daemon.py check it; onboarding does not require it). The number and type of env vars are proportional. Minor metadata inconsistency: the registry metadata lists no primary credential while the skill does require THRD_API_KEY.
Persistence & Privilege
The skill does persist non-secret runtime state: it writes an OpenAPI cache under .cache/openapi.json and a cursor file (.thrd_cursor) by default. It does not write API keys to disk, per the author, but printing the api_key to stdout could lead to leakage via logs. always:false and normal autonomous invocation settings are appropriate.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install thrd-skill - After installation, invoke the skill by name or use
/thrd-skill - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.2.7
Security hardening: removed shell=True execution in poll_daemon callback flow to eliminate shell-injection risk. --on-events is now parsed with shlex and executed in safe argv mode (shell disabled), with input validation for malformed commands. Documentation updated to clarify safe callback semantics and unsupported shell operators.
Metadata
Frequently Asked Questions
What is Thrd Skill?
Provision a dedicated inbox for your AI agent and manage email safely via thrd.email. Includes instant onboarding, inbound polling, reply/send (idempotent +... It is an AI Agent Skill for Claude Code / OpenClaw, with 606 downloads so far.
How do I install Thrd Skill?
Run "/install thrd-skill" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Thrd Skill free?
Yes, Thrd Skill is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Thrd Skill support?
Thrd Skill is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Thrd Skill?
It is built and maintained by Thrd. (@sergiorico1); the current version is v1.2.7.
More Skills