← Back to Skills Marketplace
SharePoint by altf1be
by
Abdelkrim from Brussels
· GitHub ↗
· v2.0.0
· MIT-0
376
Downloads
1
Stars
0
Active Installs
5
Versions
Install in OpenClaw
/install sharepoint-by-altf1be
Description
Secure SharePoint file operations and Office document intelligence via Microsoft Graph API — certificate auth, Sites.Selected, read/write Word (mammoth), Exc...
Usage Guidance
This package appears to do what it says: it helps you operate on a single SharePoint site using certificate-based Microsoft Graph auth and extracts text from Office files for downstream AI processing. Before installing, verify the repository/source is trusted (check the GitHub link), keep the certificate file secure (do not commit it), and grant the app only the minimum Sites.Selected permissions and site-level access required. Note that the script extracts text but does not itself call LLMs — any summarization/AI steps are expected to be done by your OpenClaw agent or other tooling. Also be aware some Azure client dependencies indicate Node >=20 in their transitive manifests; use a compatible Node version to avoid runtime issues. If you want extra assurance, review the included scripts for any outbound network calls beyond Microsoft Graph endpoints and confirm the SP_CERT_PATH points to a local certificate you control.
Capability Analysis
Type: OpenClaw Skill
Name: sharepoint-by-altf1be
Version: 2.0.0
The SharePoint skill bundle provides legitimate integration with Microsoft Graph API for document management. It implements several security best practices, including certificate-based authentication, path traversal checks in the 'safePath' helper, file size limits, and a mandatory confirmation flag for delete operations. The code in 'scripts/sharepoint.mjs' is well-structured, lacks obfuscation, and uses standard libraries for parsing Office documents (mammoth, exceljs, jszip, pdf-parse) to provide text content to the AI agent.
Capability Assessment
Purpose & Capability
Name/description match the provided files and instructions: the script implements SharePoint file listing, read, upload, search, mkdir, delete and extracts text from Office files using the listed libraries. Required env vars (tenant id, client id, cert path, site id) are what a certificate-based Graph client needs.
Instruction Scope
SKILL.md instructs creating an Entra app, setting env vars, running npm install, and executing the CLI script — all consistent with the code. One minor mismatch: README/SKILL.md advertise 'AI-powered' features (summaries, action-item extraction, presentation generation) but the included script appears only to extract and output text, not to perform LLM calls or transformation itself. This is likely because the skill provides text extraction for an external AI agent rather than performing LLM work itself; still the marketing phrasing could mislead about built-in AI behavior.
Install Mechanism
There is no automatic download-from-URL installer; the repo includes source, package.json and package-lock.json and SKILL.md instructs running npm install. Dependencies are standard, well-known npm packages. No extract-from-arbitrary-URL or remote binary downloads are used.
Credentials
Requested env vars (SP_TENANT_ID, SP_CLIENT_ID, SP_CERT_PATH, SP_SITE_ID) are appropriate and limited to SharePoint/Graph usage. The certificate path and optional SP_CERT_PASSWORD are necessarily sensitive and required for certificate auth. Minor note: platform metadata marks SP_TENANT_ID as the primaryEnv; tenant ID is not a secret and marking it as primary is unusual but not harmful.
Persistence & Privilege
Skill does not request always:true and does not modify other skills or global configs. It runs as a normal user CLI tool and reads local certificate files when needed.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install sharepoint-by-altf1be - After installation, invoke the skill by name or use
/sharepoint-by-altf1be - Provide required inputs per the skill's parameter spec and get structured output
Version History
v2.0.0
Re-publish with updates
v1.1.0
Add coauthoring: checkout, checkin, edit-link, safe edit flow + fix Node 25 upload
v1.0.2
Remove setup-guide with live tenant IDs from published skill
v1.0.1
Re-publish to trigger security scan
v1.0.0
Initial release: list, read, upload, search, mkdir, delete — certificate auth, Sites.Selected, Office format extraction
Metadata
Frequently Asked Questions
What is SharePoint by altf1be?
Secure SharePoint file operations and Office document intelligence via Microsoft Graph API — certificate auth, Sites.Selected, read/write Word (mammoth), Exc... It is an AI Agent Skill for Claude Code / OpenClaw, with 376 downloads so far.
How do I install SharePoint by altf1be?
Run "/install sharepoint-by-altf1be" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is SharePoint by altf1be free?
Yes, SharePoint by altf1be is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does SharePoint by altf1be support?
SharePoint by altf1be is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created SharePoint by altf1be?
It is built and maintained by Abdelkrim from Brussels (@abdelkrim); the current version is v2.0.0.
More Skills