← 返回 Skills 市场

ExchangeService

Name: ExchangeService
Author: jokermec

作者 JokerMeC · GitHub ↗ · v1.0.1 · MIT-0

cross-platform ✓ 安全检测通过

220

总下载

当前安装

版本数

在 OpenClaw 中安装

/install exchangeserviceskill

功能描述

Cross-platform (Linux/macOS/Windows) skill for Exchange Server 2016 CU21 EWS operations on OpenClaw Node.js runtime.

使用说明 (SKILL.md)

Exchange On-Prem Skill

Overview

This skill provides EWS (SOAP) operations for on‑prem Exchange 2016 CU21: mail, folders, and calendar/meetings.

Requirements

Node.js 20+ (22+ recommended)
Exchange EWS endpoint: /EWS/Exchange.asmx

Quick Start

Install deps:

npm install

Create encrypted config:

npm run setup-config -- \
  --exchange-url https://mail.example.com/EWS/Exchange.asmx \
  --username user \
  --auth-mode ntlm \
  --password "\x3Cpassword>" \
  --master-key "\x3CmasterKey>"

Verify:

npm run verify-login

Safety Policy

Read-first by default
Any write operation requires explicit confirmation
Write commands require --confirm true (or EXCHANGE_WRITE_CONFIRM=true)
--dry-run is supported for write commands to preview SOAP body
--insecure true (if used) only relaxes TLS validation per request and does not change global Node TLS settings

Config Model

File: config/exchange.config.json Required fields: exchange_url, username, auth_mode, secret_store Optional: domain

Capability Groups & Status

Status:

READY: implemented and verified
RESTRICTED: write/risky actions require explicit confirmation
LIMITED: implemented but blocked by environment limitations

A) Mailbox & Items

FindItem (mail list/read window): READY
SearchMail (keyword in subject/body/recipients): READY
GetItem: READY
GetUnreadCount: READY
CreateItem (mail create): READY RESTRICTED
UpdateItem: READY RESTRICTED
MoveItem / CopyItem / DeleteItem: READY RESTRICTED
SendItem: READY RESTRICTED
ReplyItem / ReplyAll: READY RESTRICTED
MarkAllItemsAsRead: READY RESTRICTED
ArchiveItem: LIMITED RESTRICTED

B) Folders

GetFolder: READY
FindFolder: READY
CreateFolder: READY RESTRICTED
UpdateFolder: READY RESTRICTED
DeleteFolder: READY RESTRICTED

C) Calendar & Meetings

Calendar window read (FindItem + CalendarView): READY
Create meeting (CreateItem CalendarItem): READY RESTRICTED

D) Structure & Config

exchange.config.json create/update: READY
Scripts organized by module folders: READY
SKILL.md commands and status updated: READY

Defaults That Matter

get-mail / search-mail default scope is all (msgfolderroot).
get-mail / search-mail default includes subfolders of the scope.
get-mail / search-mail default time window is last 3650 days. Use --days-back to narrow.
get-calendar default time window is next 7 days. Use --start-time / --end-time to override.

Command List

Read commands:

npm run verify-login
npm run get-mail -- --unread-only --limit 10
npm run get-mail -- --scope all --limit 10 (all folders under msgfolderroot)
npm run get-mail -- --scope all --days-back 3650 --limit 10
npm run search-mail -- --query "keyword" --limit 10
npm run search-mail -- --scope all --query "keyword" --limit 10
npm run get-item -- --item-id \x3CEWS_ITEM_ID>
npm run get-unread-count -- --scope all (all folders under msgfolderroot)
npm run get-folder -- --distinguished-id inbox
npm run find-folder -- --parent-distinguished-id msgfolderroot --traversal Shallow --limit 50
npm run get-calendar -- --limit 20
npm run get-calendar -- --start-time 2026-03-01T00:00:00+08:00 --end-time 2026-05-01T00:00:00+08:00 --limit 200

Write commands (require confirm):

npm run create-mail -- --confirm true --to [email protected] --subject "s" --body "b"
npm run reply-item -- --confirm true --item-id \x3Cid> --body "thanks" (supports --reply-all true)
npm run update-item -- --confirm true --item-id \x3Cid> --subject "new" (auto-fetches ChangeKey if omitted)
npm run mark-all-read -- --confirm true --distinguished-id inbox
npm run create-folder -- --confirm true --display-name "My Folder" --parent-distinguished-id inbox
npm run update-folder -- --confirm true --folder-id \x3Cid> --change-key \x3Cck> --display-name "New Name"
npm run delete-folder -- --confirm true --folder-id \x3Cid> --delete-type MoveToDeletedItems
npm run move-item -- --confirm true --item-id \x3Cid> --target-distinguished-id inbox
npm run copy-item -- --confirm true --item-id \x3Cid> --target-distinguished-id drafts
npm run delete-item -- --confirm true --item-id \x3Cid> --delete-type MoveToDeletedItems
npm run send-item -- --confirm true --item-id \x3CdraftId>
npm run send-item -- --confirm true --item-id \x3CdraftId> --change-key \x3Cck> (recommended; send will auto-fetch ChangeKey if omitted)
npm run archive-item -- --confirm true --item-id \x3Cid>
npm run create-meeting -- --confirm true --subject "Weekly Sync" --start "2026-03-18T09:00:00+08:00" --end "2026-03-18T09:30:00+08:00" --required [email protected] --location "Room A" --body "Agenda" --send-invitations SendToAllAndSaveCopy

Send receipt verification:

create-mail, reply-item, send-item support --verify-sent true|false, --verify-window-minutes \x3Cn>, --verify-max-entries \x3Cn>, --verify-strict true|false

References

https://learn.microsoft.com/en-us/exchange/client-developer/web-service-reference/ews-operations-in-exchange\r

安全使用建议

This package appears to be a legitimate on‑prem Exchange EWS client. Before installing: 1) Only provide EXCHANGE_URL/USERNAME/PASSWORD and the SKILL_MASTER_KEY if you trust the skill author and your environment; the master key encrypts local config but must be protected. 2) npm install will pull httpntlm from the public registry — review package versions if you have a strict supply‑chain policy. 3) The default search scope/time window (all folders, 3650 days) can return a large amount of mail; explicitly narrow parameters when running read commands. 4) Review the included crypto-store, connection, and ews-ops source files if you need to verify exactly how secrets are handled or transmitted. 5) Run the skill in an isolated/test environment if you are unsure, and avoid giving these credentials to untrusted third parties.

功能分析

Type: OpenClaw Skill Name: exchangeserviceskill Version: 1.0.1 The skill bundle provides a legitimate set of tools for interacting with on-premise Exchange Servers via EWS. It includes security-conscious features such as AES-256-GCM encryption for local credential storage (scripts/node/lib/crypto-store.mjs) and a mandatory confirmation mechanism for all write or destructive operations (scripts/node/lib/ews-ops.mjs). No evidence of data exfiltration, malicious prompt injection, or unauthorized execution was found; the code logic is consistent with the stated purpose of managing enterprise mail and calendar workflows.

能力评估

✓ Purpose & Capability

Name/description (Exchange EWS on‑prem ops) align with the included Node.js scripts and the declared requirements (node/npm, Exchange URL/username/auth/password, master key). The single npm dependency (httpntlm) is appropriate for NTLM/EWS access.

ℹ Instruction Scope

SKILL.md and scripts limit activity to building and sending EWS SOAP requests (mail/folders/calendar). Write operations require explicit confirmation. Note: many optional environment variables and defaults are referenced by scripts (verify flags, mailbox overrides, long default time windows like 3650 days, etc.); these are not all listed as required in the metadata but are plausible optional settings. There is no instruction to read unrelated system files or contact unexpected external endpoints.

ℹ Install Mechanism

No platform install spec is declared (instruction-only), but the package includes package.json and many scripts and instructs users to run 'npm install'. That will fetch dependencies from the npm registry (httpntlm and transitive deps). This is expected for a Node.js skill; verify you trust npm packages before installing. Minor packaging typo in package.json version field ("1..0").

✓ Credentials

Required env vars (EXCHANGE_URL, EXCHANGE_USERNAME, EXCHANGE_AUTH_MODE, EXCHANGE_PASSWORD, EXCHANGE_SKILL_MASTER_KEY) are proportionate to an EWS client that stores an encrypted local config. The primary credential is the Exchange password. Scripts reference additional optional env vars for defaults and verification; these are reasonable but not strictly required.

✓ Persistence & Privilege

Skill is not marked always:true and does not request system‑wide modifications. It will create/modify its own config file (config/exchange.config.json) and store encrypted secrets using the provided master key — this is expected behavior for the stated purpose.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install exchangeserviceskill
安装完成后，直接呼叫该 Skill 的名称或使用 /exchangeserviceskill 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.1

- Clarified safety policy to specify that the --insecure flag only relaxes TLS validation per request and does not affect global Node TLS settings. - No functional changes or new features; documentation updated for clearer guidance on security options.

v1.0.0

A Node.js skill for OpenClaw that provides EWS (SOAP) operations against on‑prem Exchange Server 2016 CU21 orLater. It supports mail, folders, and calendar/meeting workflows with explicit write confirmations.

元数据

Slug exchangeserviceskill

版本 1.0.1

许可证 MIT-0

累计安装 0

当前安装数 0

历史版本数 2

常见问题