← Back to Skills Marketplace
Smart Email
by
jundongGit
· GitHub ↗
· v1.2.0
· MIT-0
336
Downloads
0
Stars
0
Active Installs
3
Versions
Install in OpenClaw
/install smart-email
Description
Email assistant skill — check emails, AI summaries, daily digests. Supports Gmail, Outlook/M365, Google Workspace. Users interact through their chat platform...
Usage Guidance
What to consider before installing/using this skill:
- The skill will ask you for mailbox access: OAuth tokens or app passwords. These are stored locally in data/email.db (plaintext). Do not install if you require encrypted-at-rest storage unless you add/enforce encryption yourself.
- SKILL.md claims local encrypted storage, but the code does not encrypt secrets—this is a false claim. Treat stored passwords/tokens as plaintext on disk.
- The skill sends email text to the configured AI API (ai_api_base). Only set ai_api_base to a trusted provider (and prefer keeping sensitive content off third-party services). If you must use external summarization, prefer a provider you control or one with appropriate privacy commitments.
- Prefer OAuth (Outlook/M365) over app passwords when possible. Avoid pasting app passwords into public or untrusted chat channels; the skill’s UX sometimes expects the user to supply passwords via chat which can be insecure.
- The web UI exposes an access token and accepts it via query parameter; run the web UI only bound to localhost and avoid port-forwarding to the public internet. Protect <SKILL_DIR>/data and config.json with strict filesystem permissions.
- If you need strong assurances (encrypted storage, audited network endpoints), review/modify the code: implement encrypted credential storage, restrict ai_api_base to allowed hosts, and add logging/consent notices before sending email bodies externally.
If you’re not comfortable auditing or modifying the code yourself, run the skill in an isolated environment (VM/container) or decline installation.
Capability Analysis
Type: OpenClaw Skill
Name: smart-email
Version: 1.2.0
The skill provides legitimate email management and AI summarization features, but it is classified as suspicious due to several security vulnerabilities and a discrepancy between documentation and implementation. Specifically, 'store.js' stores email passwords and OAuth tokens in plain text in a local SQLite database, contradicting the 'SKILL.md' claim of 'locally encrypted storage.' Furthermore, 'imap.js' allows disabling TLS certificate verification for custom servers, which exposes users to man-in-the-middle (MITM) attacks, and 'server.js' prints a sensitive web access token directly to the console. While no intentional malicious exfiltration was found, these flaws represent significant risks when handling sensitive communication data.
Capability Assessment
Purpose & Capability
The code (imap, oauth, ai, store, server) implements an email assistant that fetches mail via IMAP and Microsoft Graph and sends content to an AI service for summarization — this matches the skill description. Required binary (node) and npm dependencies (imapflow, better-sqlite3) are coherent. Minor inconsistency: registry metadata said “no install spec” but SKILL.md contains an npm install step; this is likely an authoring mismatch rather than malicious.
Instruction Scope
SKILL.md and UI instruct collecting app passwords and OAuth tokens to access users' mailboxes and to send email text to an AI API. The README explicitly claims “local encrypted storage,” but the implementation stores passwords and tokens in plaintext in data/email.db and config.json (store.js and config.js). The skill will send email bodies (or previews) to the configured AI API base — this is expected for summarization but is a sensitive data flow and can leak private email contents to whichever AI endpoint is configured. SKILL.md also suggests guiding users to provide App Passwords via chat (Telegram/WhatsApp/Feishu), which risks exposing credentials in transit or in chat history.
Install Mechanism
No remote arbitrary download is used: SKILL.md includes an npm install step and package.json lists dependencies from npm (imapflow, better-sqlite3). These are standard, traceable packages. better-sqlite3 has native components (prebuilds or build steps), so installation may require a suitable environment (node version, build tools). No suspicious external URLs or extract-from-URL installers were found.
Credentials
Registry declares no required env vars, but config.js supports environment overrides via EMAIL_SKILL_<KEY>. The skill requires user-provided AI API keys (ai_api_key) and optionally Microsoft client id/tenant (ms_client_id, ms_tenant_id). Those credentials are necessary for the stated functionality, but the code stores them locally in plaintext config.json and email.db. Also the ai_api_base is configurable — a malicious or misconfigured base could receive full email content. The number and type of credentials requested (email passwords, OAuth tokens, AI API key) are proportionate to an email summarizer, but the storage method and how users are asked to provide them (chat messages) are not.
Persistence & Privilege
The skill does not request global or always-on privileges (always: false). It persists its own data under <SKILL_DIR>/data (email.db, config.json). The web UI generates and stores a web_token in the config file and accepts the token via cookie or URL query parameter; exposing tokens in query strings can leak via logs if the port is forwarded. The skill does not modify other skills or system-wide settings.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install smart-email - After installation, invoke the skill by name or use
/smart-email - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.2.0
Rewrote SKILL.md for OpenClaw agent integration: intent mapping, guided setup flow, first-use checks, multi-platform support via OpenClaw channels
v1.1.0
Added Web UI: browser-based config, email checking, AI summaries, and digest generation
v1.0.0
Initial release: on-demand email checking with AI summarization, IMAP + OAuth2, multi-account support
Metadata
Frequently Asked Questions
What is Smart Email?
Email assistant skill — check emails, AI summaries, daily digests. Supports Gmail, Outlook/M365, Google Workspace. Users interact through their chat platform... It is an AI Agent Skill for Claude Code / OpenClaw, with 336 downloads so far.
How do I install Smart Email?
Run "/install smart-email" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Smart Email free?
Yes, Smart Email is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Smart Email support?
Smart Email is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Smart Email?
It is built and maintained by jundongGit (@jundonggit); the current version is v1.2.0.
More Skills