← 返回 Skills 市场
christopher-schulze

Proton Mail

作者 Christopher · GitHub ↗ · v1.0.1
cross-platform ⚠ suspicious
665
总下载
0
收藏
0
当前安装
2
版本数
在 OpenClaw 中安装
/install protonmail-claw
功能描述
Manage ProtonMail emails via Playwright browser automation. Login, read, send, and manage your encrypted inbox.
安全使用建议
This skill appears to do what it says (browser automation for ProtonMail) but exercise caution before installing or running it. Items to consider: 1) Manifest mismatch — the SKILL.md asks you to supply PROTON_EMAIL and PROTON_PASSWORD but the registry metadata does not declare these as required credentials; ask the publisher to correct the manifest so you clearly know what secrets will be used. 2) Bot-evasion code — the instructions explicitly disable automation detection and recommend disabling the Chromium sandbox; this can violate ProtonMail's terms and raises operational and security risks (especially the --no-sandbox flag on multi-user hosts). 3) Credential safety — only run this in a trusted, isolated environment (not on shared servers) and prefer ephemeral accounts or Proton-approved methods (Bridge/API) if available. 4) Source verification — the skill’s source is unknown; verify the author/publisher and review the exact code you will run. 5) If you decide to run it, avoid running with --no-sandbox on production/shared machines, ensure the environment variables are injected securely, and consider manual review or running in a locked-down container/VM. If you want, I can draft a checklist of safe operational steps or a safer alternative approach (e.g., Proton Bridge or official APIs) based on your environment.
功能分析
Type: OpenClaw Skill Name: protonmail-claw Version: 1.0.1 The skill is designed for ProtonMail automation using Playwright, which is a legitimate purpose. However, it includes instructions for installing system dependencies using `sudo apt-get install` and launches Chromium with `--no-sandbox` and `--disable-setuid-sandbox` flags. While these might be necessary for certain environments or to bypass bot detection, they significantly weaken the security posture of the host system by disabling critical browser sandboxing and requiring elevated privileges for installation. These are serious vulnerabilities that could be exploited, classifying the skill as suspicious rather than benign, despite no direct evidence of intentional malicious data exfiltration or unauthorized remote control in the provided code snippets or instructions.
能力评估
Purpose & Capability
The skill's declared purpose (automating ProtonMail via Playwright) aligns with the required binaries (node, playwright) and the runtime instructions. However, the registry metadata lists no required environment variables or primary credential while the SKILL.md repeatedly instructs using PROTON_EMAIL and PROTON_PASSWORD — this mismatch is incoherent and should have been declared in the skill manifest. The skill owner/source is unknown which reduces trust.
Instruction Scope
The SKILL.md instructs the agent to perform full browser automation including logging in, reading, and sending encrypted email — which is expected — but it also explicitly includes bot-detection evasion code (overriding navigator.webdriver and disabling automation-related features). That behavior goes beyond normal automation guidance and could violate site TOS or be abused. The instructions also encourage storing credentials in environment variables but do not specify secure handling, nor does the manifest declare those env vars.
Install Mechanism
There is no centralized install spec in the registry (instruction-only), but the SKILL.md suggests installing Playwright via npm and running `npx playwright install chromium`. Those are standard installer paths (no third-party download URLs). Still, the Chromium install will download browser binaries at runtime; because the skill relies on npx installs and running a browser, users should inspect all commands before executing them in production environments.
Credentials
The skill requires the user's ProtonMail credentials to function (email/password), which is reasonable for UI automation, but the manifest fails to declare any required env vars or primary credential. Requiring highly sensitive credentials without declaring them in the registry metadata (and without guidance on secure storage or least privilege) is a proportionality and transparency issue. Also the skill asks users to disable sandboxing flags which can increase host risk if run on shared systems.
Persistence & Privilege
The skill is not marked always:true and does not request special platform persistence. It is user-invocable and allows autonomous model invocation (the platform default). The skill does not request or attempt to modify other skills or system-wide agent settings in the provided instructions.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install protonmail-claw
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /protonmail-claw 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.1
- Added comprehensive documentation in SKILL.md covering setup, usage, and security tips for managing ProtonMail via Playwright browser automation. - Specifies installation requirements and system dependencies for various platforms. - Provides step-by-step code samples for logging in, reading, sending, and managing emails. - Introduces bot detection evasion techniques to improve reliability. - Highlights limitations such as 2FA automation challenges and UI fragility. - Offers detailed troubleshooting advice and best security practices. - Project is now clearly positioned as a browser automation solution (not API or IMAP).
v1.0.0
Initial release of ProtonMail automation via Playwright: - Automate login, reading, sending, and management of ProtonMail emails using browser automation. - Includes enterprise-grade bot detection evasion techniques. - Provides code examples for common tasks: login, reading inbox, reading emails, sending emails, and logout. - Requires Node.js (18+), Playwright, and Chromium; includes platform-specific setup instructions. - Uses environment variables for secure credential handling. - Documents known limitations (e.g., 2FA, UI changes) and troubleshooting steps.
元数据
Slug protonmail-claw
版本 1.0.1
许可证
累计安装 0
当前安装数 0
历史版本数 2
常见问题

Proton Mail 是什么?

Manage ProtonMail emails via Playwright browser automation. Login, read, send, and manage your encrypted inbox. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 665 次。

如何安装 Proton Mail?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install protonmail-claw」即可一键安装,无需额外配置。

Proton Mail 是免费的吗?

是的,Proton Mail 完全免费(开源免费),可自由下载、安装和使用。

Proton Mail 支持哪些平台?

Proton Mail 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Proton Mail?

由 Christopher(@christopher-schulze)开发并维护,当前版本 v1.0.1。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论