← Back to Skills Marketplace
cyberscribe

Omnifocus4

by cyberscribe · GitHub ↗ · v1.0.3 · MIT-0
cross-platform ⚠ suspicious
200
Downloads
1
Stars
0
Active Installs
4
Versions
Install in OpenClaw
/install omnifocus4
Description
Live OmniFocus access via native Omni Automation — tasks, projects, inbox, tags. Use for ANY OmniFocus query: 'show my tasks', 'what's in my inbox', 'omnifoc...
Usage Guidance
This skill appears to implement exactly what it claims (local OmniFocus queries and edits), but there are a few things to check before installing or enabling it: 1) The runtime docs tell agents to call a path ending in scripts/of, but the bundle contains scripts/omnifocus.py — confirm what the agent will actually execute and whether an 'of' wrapper is present. 2) SKILL.md asks Local Claude Code to pass dangerouslyDisableSandbox: true to Bash calls on macOS. Disabling the sandbox weakens protections; only do this if you trust the skill and understand the platform implications. 3) The skill writes prefs to ~/.omnifocus4/prefs.json (mode and approved list). Review that file and prefer 'once' or 'every' modes instead of 'yolo' if you want manual approval for writes. 4) Owner/metadata mismatch: the registry owner ID in the initial metadata differs from the ownerId in _meta.json—this could indicate repackaging or a packaging mistake; verify the source/author. 5) If you want to be extra safe, run the included tests locally (they mock osascript) and manually inspect scripts/omnifocus.py to confirm there are no hidden network calls or unexpected behavior. If you will allow autonomous invocation, prefer conservative prefs and avoid enabling 'yolo' to reduce accidental writes.
Capability Analysis
Type: OpenClaw Skill Name: omnifocus4 Version: 1.0.3 The skill provides deep integration with OmniFocus via AppleScript and Omni Automation, but it contains high-risk instructions in SKILL.md that direct the AI agent to bypass security controls by disabling its sandbox (dangerouslyDisableSandbox: true). Additionally, the instructions use forceful language to override the agent's standard operating procedures (e.g., "do not ask clarifying questions"), which is a form of prompt injection. While the core logic in scripts/omnifocus.py includes a well-designed local authorization system for write operations (prefs.json), the explicit request to lower environment security and the use of osascript for inter-process automation present a significant attack surface.
Capability Tags
cryptocan-make-purchases
Capability Assessment
Purpose & Capability
Name/description and included code implement a local OmniFocus CLI via AppleScript/Omni Automation. The code calls osascript/evaluate javascript to query and modify OmniFocus and includes a write-authorization guard; no network calls or unrelated dependencies are present.
Instruction Scope
SKILL.md instructs agents to always run the included script for live data and to 'do not ask clarifying questions'. More importantly, it instructs Local Claude Code (macOS) to call Bash with dangerouslyDisableSandbox: true to work around sandbox restrictions for AppleScript. Asking callers to disable the sandbox weakens platform protections and is a high-risk instruction. The file-based command paths used in the docs (.claude/skills/omnifocus4/scripts/of) also don't exactly match the provided file name (scripts/omnifocus.py), which could break runtime invocation or hide expected wrappers.
Install Mechanism
No install spec (instruction-only) so nothing is downloaded at install time, which is lower risk. The bundle does include an executable Python CLI (scripts/omnifocus.py) but no explicit 'of' wrapper; SKILL.md references .claude/.../scripts/of while the repo provides omnifocus.py. This path/name mismatch should be resolved before runtime to avoid failures or unexpected behavior.
Credentials
The skill requests no environment variables or external credentials. It writes a small prefs file under ~/.omnifocus4/prefs.json to track user approval mode, which is reasonable for local CLI behavior.
Persistence & Privilege
always:false and no extra system-wide config changes are requested, which is good. However, the SKILL.md recommendation to disable the macOS sandbox (dangerouslyDisableSandbox) increases the skill's effective privilege and attack surface. The script also persists approval state in the user's home directory (~/.omnifocus4/prefs.json); while expected, combined with the sandbox bypass instruction this raises the blast radius for accidental or malicious writes.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install omnifocus4
  3. After installation, invoke the skill by name or use /omnifocus4
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.3
SKILL.md: document invocation — call of via Bash directly, never wrap in AppleScript do shell script. Clarify sandbox vs Cowork/remote environments.
v1.0.2
tag-summary: slim records + incomplete-only, default limit 200 (was 1000). Prevents token-limit overflow on large tags. Response renames 'total' to 'returned' and adds 'totalIncomplete' and 'truncated'.
v1.0.1
Fix script paths to be skill-directory-relative
v1.0.0
Complete rewrite using native Omni Automation JS (via AppleScript evaluate javascript) instead of JXA. Fixes cross-process type-conversion bugs. Adds write commands with auth guard, per-project early-exit for available tasks (~10x faster), full task CRUD, repeat/recurrence support, and hierarchical folder/project/tag views.
Metadata
Slug omnifocus4
Version 1.0.3
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 4
Frequently Asked Questions

What is Omnifocus4?

Live OmniFocus access via native Omni Automation — tasks, projects, inbox, tags. Use for ANY OmniFocus query: 'show my tasks', 'what's in my inbox', 'omnifoc... It is an AI Agent Skill for Claude Code / OpenClaw, with 200 downloads so far.

How do I install Omnifocus4?

Run "/install omnifocus4" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Omnifocus4 free?

Yes, Omnifocus4 is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Omnifocus4 support?

Omnifocus4 is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Omnifocus4?

It is built and maintained by cyberscribe (@cyberscribe); the current version is v1.0.3.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments