← Back to Skills Marketplace

Proton Mail

Name: Proton Mail
Author: christopher-schulze

by Christopher · GitHub ↗ · v1.0.1

cross-platform ⚠ suspicious

665

Downloads

Stars

Active Installs

Versions

Install in OpenClaw

/install protonmail-claw

Description

Manage ProtonMail emails via Playwright browser automation. Login, read, send, and manage your encrypted inbox.

Usage Guidance

This skill appears to do what it says (browser automation for ProtonMail) but exercise caution before installing or running it. Items to consider: 1) Manifest mismatch — the SKILL.md asks you to supply PROTON_EMAIL and PROTON_PASSWORD but the registry metadata does not declare these as required credentials; ask the publisher to correct the manifest so you clearly know what secrets will be used. 2) Bot-evasion code — the instructions explicitly disable automation detection and recommend disabling the Chromium sandbox; this can violate ProtonMail's terms and raises operational and security risks (especially the --no-sandbox flag on multi-user hosts). 3) Credential safety — only run this in a trusted, isolated environment (not on shared servers) and prefer ephemeral accounts or Proton-approved methods (Bridge/API) if available. 4) Source verification — the skill’s source is unknown; verify the author/publisher and review the exact code you will run. 5) If you decide to run it, avoid running with --no-sandbox on production/shared machines, ensure the environment variables are injected securely, and consider manual review or running in a locked-down container/VM. If you want, I can draft a checklist of safe operational steps or a safer alternative approach (e.g., Proton Bridge or official APIs) based on your environment.

Capability Analysis

Type: OpenClaw Skill Name: protonmail-claw Version: 1.0.1 The skill is designed for ProtonMail automation using Playwright, which is a legitimate purpose. However, it includes instructions for installing system dependencies using `sudo apt-get install` and launches Chromium with `--no-sandbox` and `--disable-setuid-sandbox` flags. While these might be necessary for certain environments or to bypass bot detection, they significantly weaken the security posture of the host system by disabling critical browser sandboxing and requiring elevated privileges for installation. These are serious vulnerabilities that could be exploited, classifying the skill as suspicious rather than benign, despite no direct evidence of intentional malicious data exfiltration or unauthorized remote control in the provided code snippets or instructions.

Capability Assessment

ℹ Purpose & Capability

The skill's declared purpose (automating ProtonMail via Playwright) aligns with the required binaries (node, playwright) and the runtime instructions. However, the registry metadata lists no required environment variables or primary credential while the SKILL.md repeatedly instructs using PROTON_EMAIL and PROTON_PASSWORD — this mismatch is incoherent and should have been declared in the skill manifest. The skill owner/source is unknown which reduces trust.

⚠ Instruction Scope

The SKILL.md instructs the agent to perform full browser automation including logging in, reading, and sending encrypted email — which is expected — but it also explicitly includes bot-detection evasion code (overriding navigator.webdriver and disabling automation-related features). That behavior goes beyond normal automation guidance and could violate site TOS or be abused. The instructions also encourage storing credentials in environment variables but do not specify secure handling, nor does the manifest declare those env vars.

ℹ Install Mechanism

There is no centralized install spec in the registry (instruction-only), but the SKILL.md suggests installing Playwright via npm and running `npx playwright install chromium`. Those are standard installer paths (no third-party download URLs). Still, the Chromium install will download browser binaries at runtime; because the skill relies on npx installs and running a browser, users should inspect all commands before executing them in production environments.

⚠ Credentials

The skill requires the user's ProtonMail credentials to function (email/password), which is reasonable for UI automation, but the manifest fails to declare any required env vars or primary credential. Requiring highly sensitive credentials without declaring them in the registry metadata (and without guidance on secure storage or least privilege) is a proportionality and transparency issue. Also the skill asks users to disable sandboxing flags which can increase host risk if run on shared systems.

✓ Persistence & Privilege

The skill is not marked always:true and does not request special platform persistence. It is user-invocable and allows autonomous model invocation (the platform default). The skill does not request or attempt to modify other skills or system-wide agent settings in the provided instructions.

How to Use

Make sure OpenClaw is installed (local or Docker)
Run the install command in chat: /install protonmail-claw
After installation, invoke the skill by name or use /protonmail-claw
Provide required inputs per the skill's parameter spec and get structured output

Version History

v1.0.1

- Added comprehensive documentation in SKILL.md covering setup, usage, and security tips for managing ProtonMail via Playwright browser automation. - Specifies installation requirements and system dependencies for various platforms. - Provides step-by-step code samples for logging in, reading, sending, and managing emails. - Introduces bot detection evasion techniques to improve reliability. - Highlights limitations such as 2FA automation challenges and UI fragility. - Offers detailed troubleshooting advice and best security practices. - Project is now clearly positioned as a browser automation solution (not API or IMAP).

v1.0.0

Initial release of ProtonMail automation via Playwright: - Automate login, reading, sending, and management of ProtonMail emails using browser automation. - Includes enterprise-grade bot detection evasion techniques. - Provides code examples for common tasks: login, reading inbox, reading emails, sending emails, and logout. - Requires Node.js (18+), Playwright, and Chromium; includes platform-specific setup instructions. - Uses environment variables for secure credential handling. - Documents known limitations (e.g., 2FA, UI changes) and troubleshooting steps.

Metadata

Slug protonmail-claw

Version 1.0.1

License —

All-time Installs 0

Active Installs 0

Total Versions 2

Frequently Asked Questions

What is Proton Mail?

Manage ProtonMail emails via Playwright browser automation. Login, read, send, and manage your encrypted inbox. It is an AI Agent Skill for Claude Code / OpenClaw, with 665 downloads so far.

How do I install Proton Mail?

Run "/install protonmail-claw" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Proton Mail free?

Yes, Proton Mail is completely free (open-source). You can download, install and use it at no cost.

Which platforms does Proton Mail support?

Proton Mail is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Proton Mail?

It is built and maintained by Christopher (@christopher-schulze); the current version is v1.0.1.

More Skills