← Back to Skills Marketplace
dongrebeccahhh-boop

bshio

by dongrebeccahhh-boop · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ⚠ suspicious
108
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install outlook-email-skill-fixed
Description
Microsoft Outlook/Live.com email and calendar client via Microsoft Graph API. List, search, read, send emails. View and create calendar events. Supports devi...
Usage Guidance
This skill's purpose (an Outlook CLI) is plausible, but there are important red flags you should resolve before installing or running anything: - The bundle contains only documentation (README and SKILL.md) and no executable or Python script named 'outlook'. Ask the author where the CLI binary or source code is and why it's not packaged. Do not rely on running commands like 'outlook auth' until you have the actual program. - Authentication guidance is inconsistent: SKILL.md advertises device-code flow (which typically does not require a client secret) but the README instructs creating and entering a client secret. Confirm which auth flow the tool uses. Avoid entering or storing client secrets unless you have audited the code and understand why they are needed. - The skill will store OAuth tokens at ~/.config/outlook-cli/token.json. That is expected, but ensure the file permissions are set (chmod 600) and never share or commit the file. Prefer device-code / public client flows if you want to avoid storing client secrets. - Because this is instruction-only (no install), there is low install-time risk — but you must obtain the actual CLI implementation from a trustworthy source (official repo or release). If the implementation is delivered from an unknown URL later, treat that as higher risk. Recommended next steps before use: obtain and inspect the actual 'outlook' program source (or official release), verify the auth flow and minimal Graph API permissions, and confirm there are no hidden network endpoints or telemetry beyond Microsoft Graph. If the author cannot provide the code or an official release, avoid installing or entering sensitive credentials.
Capability Analysis
Type: OpenClaw Skill Name: outlook-email-skill-fixed Version: 1.0.0 The skill bundle provides documentation and metadata for a Microsoft Outlook CLI tool utilizing the Microsoft Graph API. The SKILL.md and README.md files contain detailed, professional instructions, including proactive security advice such as setting restrictive file permissions (chmod 600) for OAuth tokens and using official Azure portals for app registration. While the main execution script ('outlook') is not included in the provided files, the instructions and metadata show no signs of malicious intent, prompt injection, or unauthorized data exfiltration, and the requested permissions (Network, Python, Bash) are consistent with the tool's stated purpose.
Capability Assessment
Purpose & Capability
The skill's name and description (Outlook/Microsoft Graph client) align with the instructions (list/read/send emails, calendar). However the metadata/execution block says the runtime is a Python script with main './outlook' and requires the 'outlook' CLI, yet no executable or Python code is included in the package manifest — only README and SKILL.md files. That mismatch (declaring a runnable CLI but shipping no code) is incoherent.
Instruction Scope
The SKILL.md instructs the agent/user to run commands like 'outlook configure' and 'outlook auth' and to read/write token files (~/.config/outlook-cli/token.json). Those actions are appropriate for an email client, but the instructions assume a local 'outlook' program exists. The README also instructs creating a client secret, while other parts promote device-code auth for headless environments — these authentication instructions conflict and broaden scope without justification.
Install Mechanism
This is an instruction-only skill with no install specification and no downloaded code. That lowers install-time risk. The metadata suggests Python and the 'requests' package are required, which is reasonable for a Graph API client.
Credentials
No environment variables or unrelated credentials are requested (good). The skill requires storing OAuth tokens at ~/.config/outlook-cli/token.json which is expected for an OAuth client. However, the README's guidance to create and input a client secret conflicts with the stated support for device-code (public client) flows — requiring a client secret may be unnecessary and increases risk if users are encouraged to store it locally.
Persistence & Privilege
The skill is not marked 'always:true' and uses normal model invocation. It stores tokens in its own config path (~/.config/outlook-cli) which is reasonable for this functionality and does not request system-wide privileges.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install outlook-email-skill-fixed
  3. After installation, invoke the skill by name or use /outlook-email-skill-fixed
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial public release of Outlook email and calendar CLI skill. - Manage Microsoft Outlook/Live.com email: list, search, read, send, reply - Access and create Outlook calendar events - Supports device code authentication for servers and headless environments - OAuth tokens securely stored locally; auto token refresh enabled - Requires Python 3 and `requests` library; compatible with OpenClaw and CLI platforms
Metadata
Slug outlook-email-skill-fixed
Version 1.0.0
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 1
Frequently Asked Questions

What is bshio?

Microsoft Outlook/Live.com email and calendar client via Microsoft Graph API. List, search, read, send emails. View and create calendar events. Supports devi... It is an AI Agent Skill for Claude Code / OpenClaw, with 108 downloads so far.

How do I install bshio?

Run "/install outlook-email-skill-fixed" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is bshio free?

Yes, bshio is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does bshio support?

bshio is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created bshio?

It is built and maintained by dongrebeccahhh-boop (@dongrebeccahhh-boop); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463556 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259610 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200551 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191226 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190235 · by oswalpalash

💬 Comments