← Back to Skills Marketplace
443
Downloads
0
Stars
1
Active Installs
1
Versions
Install in OpenClaw
/install powerskills
Description
Windows automation toolkit for AI agents. Provides Outlook email/calendar, Edge browser (CDP), desktop screenshots/window management, and shell commands via...
Usage Guidance
Do not install or run this skill until you verify what will actually execute. Key points to check: 1) The package currently contains only documentation and config.json — there are no powerskills.ps1 or per-skill .ps1 scripts listed; ask the publisher where the code is or obtain the full repository and inspect the scripts before running. 2) If you do run code, do not change execution policy system-wide; prefer one-off invocation with PowerShell -ExecutionPolicy Bypass and do so in an isolated/test VM. 3) The documented capabilities can read Outlook mail, environment variables, and execute arbitrary commands and browser JS — these can exfiltrate secrets. Only run under a non-admin, non-sensitive account and after reviewing every script. 4) If you cannot inspect the scripts (missing or remotely fetched), treat the skill as untrusted. 5) Consider disabling autonomous invocation for the agent or restricting this skill until you confirm its provenance and contents.
Capability Analysis
Type: OpenClaw Skill
Name: powerskills
Version: 0.1.0
The PowerSkills bundle provides high-risk administrative primitives including arbitrary PowerShell execution (system exec), JavaScript evaluation in the browser (browser evaluate), and desktop keystroke injection (desktop keys). It also grants full access to Outlook emails, calendars, and browser session data. While these are presented as automation tools, the lack of any documented security constraints or input sanitization makes the toolkit a potent vehicle for data exfiltration and remote control, as seen in skills/system/SKILL.md, skills/browser/SKILL.md, and skills/outlook/SKILL.md.
Capability Assessment
Purpose & Capability
The SKILL.md advertises a CLI entrypoint (powerskills.ps1) and per-skill .ps1 scripts for Outlook, browser, desktop, and system actions, but the provided file manifest contains only documentation and config.json — no executable .ps1 files. That is a clear mismatch: the skill promises capabilities that cannot be delivered from the included files, which could indicate missing artifacts or that the skill expects the agent/user to fetch or already have external scripts.
Instruction Scope
The runtime instructions tell the agent to change PowerShell execution policy (Set-ExecutionPolicy RemoteSigned or use Bypass), start Edge with remote debugging, run powerskills.ps1 and per-skill .ps1 scripts, and expose actions that read Outlook messages, evaluate arbitrary JavaScript in pages, capture screenshots, send keystrokes, read environment variables, and run arbitrary shell commands. Those actions are powerful and can access sensitive data (email bodies, addresses, env vars, files) and perform arbitrary command execution — the documentation gives broad authority without constraints. Additionally, the scripts the docs reference are not present in the bundle.
Install Mechanism
There is no install spec (instruction-only), so nothing in the bundle will be written or executed automatically. That lowers risk from hidden downloads, but the docs explicitly instruct running local PowerShell scripts (which are absent) and changing execution policy or invoking PowerShell with ExecutionPolicy Bypass — both of which affect system behavior and could enable running external code if the user later fetches scripts.
Credentials
The skill declares no required environment variables or credentials (proportionate), but the documented actions include reading arbitrary environment variables and executing shell commands. While these capabilities are consistent with a 'system' skill, they are high-privilege operations relative to many users' expectations (especially Outlook access and arbitrary exec), and the SKILL.md does not limit which env vars or files may be read.
Persistence & Privilege
The instructions recommend setting the user's PowerShell execution policy (Set-ExecutionPolicy -Scope CurrentUser -ExecutionPolicy RemoteSigned) or using ExecutionPolicy Bypass. Changing execution policy is a persistent, system-level change that weakens script execution protections. The skill is not marked always:true, but the docs encourage actions that persist and broaden attack surface if malicious or mistaken scripts are later run.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install powerskills - After installation, invoke the skill by name or use
/powerskills - Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.1.0
Initial release - Outlook, Edge browser, desktop, and system automation for Windows via PowerShell
Metadata
Frequently Asked Questions
What is PowerSkills?
Windows automation toolkit for AI agents. Provides Outlook email/calendar, Edge browser (CDP), desktop screenshots/window management, and shell commands via... It is an AI Agent Skill for Claude Code / OpenClaw, with 443 downloads so far.
How do I install PowerSkills?
Run "/install powerskills" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is PowerSkills free?
Yes, PowerSkills is completely free (open-source). You can download, install and use it at no cost.
Which platforms does PowerSkills support?
PowerSkills is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created PowerSkills?
It is built and maintained by aloth (@aloth); the current version is v0.1.0.
More Skills