功能描述

Provides unified access to Gmail, Google Calendar, and Drive APIs for managing emails, calendar events, and files with OAuth2 authentication.

使用说明 (SKILL.md)

Google Suite Skill\r

Name: Google Suite Skill
Author: cenralsolution

\r Version: 1.0.0\r Category: Productivity\r Description: Unified access to Gmail, Google Calendar, and Google Drive APIs for sending, reading, deleting emails, managing calendar events, and handling files.\r \r

Features\r

\r

Gmail\r

Send emails\r
Read emails (list, search, get details)\r
Delete emails\r
Mark as read/unread\r \r

Google Calendar\r

List events\r
Create events\r
Update events\r
Delete events\r \r

Google Drive\r

List files\r
Upload files\r
Download files\r
Delete files\r
Search files\r \r

Setup\r

\r

Prerequisites\r

Python 3.8+\r
Google Cloud project with OAuth2 credentials\r
Enable Gmail, Calendar, and Drive APIs in Google Cloud Console\r \r

Environment Variables\r

GOOGLE_OAUTH_CLIENT_ID - OAuth2 client ID\r
GOOGLE_OAUTH_CLIENT_SECRET - OAuth2 client secret\r
GOOGLE_OAUTH_REDIRECT_URI - OAuth2 redirect URI (e.g., http://localhost:8080/callback)\r \r

Required Scopes\r

https://www.googleapis.com/auth/gmail.readonly\r
https://www.googleapis.com/auth/gmail.send\r
https://www.googleapis.com/auth/gmail.modify\r
https://www.googleapis.com/auth/calendar\r
https://www.googleapis.com/auth/drive\r \r

Token Storage\r

Tokens are stored in google_suite_tokens.json (by default)\r \r

Installation\r

pip install --upgrade google-api-python-client google-auth-httplib2 google-auth-oauthlib\r
```\r
\r
## Usage\r
\r
### Authentication\r
1. On first use, the skill will prompt for OAuth2 authentication.\r
2. Visit the provided URL, log in, and paste the authorization code.\r
3. Tokens will be saved for future use.\r
\r
### Example Calls\r
\r
#### Send Email\r
```python\r
skill.execute({\r
    "service": "gmail",\r
    "action": "send",\r
    "to": "[email protected]",\r
    "subject": "Test Email",\r
    "body": "Hello from OpenClaw!"\r
})\r
```\r
\r
#### List Emails\r
```python\r
skill.execute({\r
    "service": "gmail",\r
    "action": "list",\r
    "query": "from:[email protected]"\r
})\r
```\r
\r
#### Delete Email\r
```python\r
skill.execute({\r
    "service": "gmail",\r
    "action": "delete",\r
    "message_id": "XYZ123..."\r
})\r
```\r
\r
#### List Calendar Events\r
```python\r
skill.execute({\r
    "service": "calendar",\r
    "action": "list",\r
    "days": 7\r
})\r
```\r
\r
#### Create Calendar Event\r
```python\r
skill.execute({\r
    "service": "calendar",\r
    "action": "create",\r
    "summary": "Team Meeting",\r
    "start": "2024-03-01T10:00:00",\r
    "end": "2024-03-01T11:00:00"\r
})\r
```\r
\r
#### List Drive Files\r
```python\r
skill.execute({\r
    "service": "drive",\r
    "action": "list",\r
    "query": "name contains 'report'"\r
})\r
```\r
\r
#### Upload File to Drive\r
```python\r
skill.execute({\r
    "service": "drive",\r
    "action": "upload",\r
    "file_path": "./myfile.pdf"\r
})\r
```\r
\r
## Security\r
- OAuth2 tokens are stored securely and never logged.\r
- All credentials are loaded from environment variables.\r
- No sensitive data is printed or logged.\r
\r
## Troubleshooting\r
- Ensure all required APIs are enabled in Google Cloud Console.\r
- Check that OAuth2 credentials are correct and match the redirect URI.\r
- Delete `google_suite_tokens.json` to force re-authentication if needed.\r
\r
## References\r
- [Google API Python Client](https://github.com/googleapis/google-api-python-client)\r
- [Gmail API Docs](https://developers.google.com/gmail/api)\r
- [Calendar API Docs](https://developers.google.com/calendar/api)\r
- [Drive API Docs](https://developers.google.com/drive/api)\r

安全使用建议

This skill appears to implement the advertised Gmail/Calendar/Drive features, but there are a few red flags you should consider before installing: - Metadata mismatch: The registry claims no required env vars and no install steps, but SKILL.md and the code require GOOGLE_OAUTH_CLIENT_ID, GOOGLE_OAUTH_CLIENT_SECRET, and GOOGLE_OAUTH_REDIRECT_URI and instruct you to pip install Google API libs. Treat the missing metadata as a packaging/quality issue and ask the publisher for clarification. - Sensitive credentials: You must provide an OAuth client ID and secret. Only supply these if you trust the publisher. The skill will launch a local OAuth flow and store tokens in google_suite_tokens.json in the skill folder (plain JSON). Ensure that file is stored in a secure/isolated environment and that file permissions prevent unauthorized access. - Broad scopes: The scopes include full Drive and Gmail modify/send access. If you only need read-only actions, consider narrowing scopes or using a different, less-privileged skill. - Source provenance: The skill has no homepage and an unknown source owner — prefer skills with a verifiable homepage or known publisher. If you plan to use it, review the included Python files yourself (they are present and readable) and consider running the skill in an isolated environment (VM/container) until you are comfortable. - Practical steps: (1) Verify the code matches SKILL.md (it does, but check token path and any changes), (2) run in an isolated account/VM, (3) set restrictive file permissions on google_suite_tokens.json, and (4) ask the publisher to fix metadata and provide a source/homepage for accountability. If you want, I can produce a checklist of exact commands to inspect the files, run the skill in a container, or help you narrow OAuth scopes for safer use.

功能分析

Type: OpenClaw Skill Name: google-suite Version: 1.0.0 The skill provides broad access to Gmail, Google Calendar, and Google Drive APIs, including sending emails, managing events, and handling files. The `_drive_upload` and `_drive_download` functions in `skill.py` accept `file_path` and `dest_path` parameters directly from the agent's input, allowing the agent to upload arbitrary local files or download files to arbitrary local paths. This presents a significant vulnerability for data exfiltration or arbitrary file writes if the agent is compromised via prompt injection, as there is no input sanitization or restriction on these paths. OAuth2 tokens are also stored locally in `google_suite_tokens.json`, which could be a sensitive target.

能力评估

⚠ Purpose & Capability

The skill's declared registry metadata lists no required environment variables or primary credential, yet SKILL.md and the code require OAuth credentials (GOOGLE_OAUTH_CLIENT_ID, GOOGLE_OAUTH_CLIENT_SECRET, GOOGLE_OAUTH_REDIRECT_URI). The top-level registry also described the package as instruction-only, but the bundle contains Python code and requirements — these metadata mismatches are incoherent and worth flagging. The requested credentials themselves are appropriate for a Google Suite integration, but the metadata omission is suspicious and reduces trust (source/homepage unknown).

ℹ Instruction Scope

SKILL.md instructions and the code stay within the stated scope (Gmail/Calendar/Drive operations) and describe an OAuth flow (local server + user consent). However SKILL.md asserts 'tokens are stored securely and never logged' while the implementation writes tokens to a plain JSON file (google_suite_tokens.json) in the skill folder — not encrypted. That storage behavior should be considered when trusting the skill.

ℹ Install Mechanism

There is no formal install spec in the registry (instruction-only), but the bundle includes requirements.txt and explicit pip install instructions in SKILL.md for google-api-python-client and related libs. This is expected for a Python skill, but the absence of a declared install mechanism in the metadata is inconsistent with the provided code and requirements.

✓ Credentials

The environment variables the skill uses (OAuth client ID, client secret, redirect URI) are appropriate and proportionate to its functionality. The scopes requested are broad (read/send/modify Gmail, calendar, full Drive) but justified by the feature set. Note: these are sensitive values; the skill stores resulting tokens as a local JSON file which should be protected (file permissions, isolated environment).

ℹ Persistence & Privilege

The skill persists OAuth tokens to google_suite_tokens.json in the skill directory so it can reuse credentials across runs. always:false and no cross-skill configuration changes are present, so privilege level is reasonable. Still, token persistence to disk is a lasting capability — ensure the file's location and permissions are acceptable for your security posture.

版本历史

v1.0.0

- Initial release providing unified access to Gmail, Google Calendar, and Google Drive APIs. - Supports sending, reading, deleting, and managing emails. - Allows creating, listing, updating, and deleting calendar events. - Handles Google Drive file operations: list, search, upload, download, and delete. - OAuth2 authentication with secure token storage using environment variables. - Python 3.8+ support with guided setup and usage examples.

元数据

Slug google-suite

版本 1.0.0

许可证 —

累计安装 1

当前安装数 1

历史版本数 1

常见问题

Google Suite Skill 是什么？

Provides unified access to Gmail, Google Calendar, and Drive APIs for managing emails, calendar events, and files with OAuth2 authentication. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件，目前累计下载 533 次。

如何安装 Google Suite Skill？

在 OpenClaw 或 Claude Code 对话框中运行命令「/install google-suite」即可一键安装，无需额外配置。

Google Suite Skill 是免费的吗？

是的，Google Suite Skill 完全免费（开源免费），可自由下载、安装和使用。

Google Suite Skill 支持哪些平台？

Google Suite Skill 跨平台运行，可在任意部署了 OpenClaw / Claude Code 的环境中使用（cross-platform）。

谁开发了 Google Suite Skill？

由 Cenralsolution（@cenralsolution）开发并维护，当前版本 v1.0.0。

Google Suite Skill