← 返回 Skills 市场
myskil
作者
Jizhidemu52
· GitHub ↗
· v1.0.1
· MIT-0
82
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install webmail-email-monitor-skill
功能描述
Monitor Outlook and other common webmail inboxes in a persistent Edge profile, process new messages as a detached local background task, capture complete mes...
安全使用建议
Do not run or allow unsigned PowerShell scripts you didn't review. Before installing or running this skill: (1) ask the publisher for the actual scripts and their cryptographic provenance (source repo, release URL, or a package you can inspect); (2) request an explicit install spec and a list of network hosts the bootstrap will contact; (3) review the contents of any scripts (especially those run with ExecutionPolicy Bypass) to ensure they don't download arbitrary code or persist startup tasks; (4) consider running in a sandboxed or VM environment first; (5) be aware this will access your browser profile, download email attachments to your Desktop, and keep a long-running background process — only proceed if you trust the code and understand those implications.
功能分析
Type: OpenClaw Skill
Name: webmail-email-monitor-skill
Version: 1.0.1
The skill bundle (specifically SKILL.md) describes a background webmail monitor that employs high-risk persistence and execution tactics, including bypassing PowerShell execution policies and installing system-level software via winget. It instructs the agent to launch a detached background process and 'return immediately,' effectively hiding the monitor's ongoing activities—such as capturing screenshots and downloading attachments—from the user's immediate oversight. While these capabilities are framed as automation features, the combination of environment modification, sensitive data access, and stealthy execution patterns is highly suspicious.
能力评估
Purpose & Capability
The skill claims to run a persistent webmail monitor via scripts under scripts/webmail_monitor_cli.ps1 and Python shims, but the published bundle contains only SKILL.md (no scripts, no code, no install). The SKILL.md expects local scripts, dependency installation, and a 'webmail-monitor' shim to exist or be bootstrapped, yet the package provides none and declares no required env/config. That incoherence means the skill as published cannot perform its stated purpose without fetching or creating code at runtime.
Instruction Scope
The instructions explicitly tell the agent to run PowerShell with ExecutionPolicy Bypass to start a detached background monitor, capture full message screenshots, download attachments to the desktop, and write logs and Excel files. Those actions require broad local file and browser profile access and have persistence implications. The SKILL.md gives concrete runtime commands (powershell -ExecutionPolicy Bypass -File scripts/...) even though those files are missing, which is a red flag for hidden fetch/exec behavior if the agent or user follows the instructions.
Install Mechanism
There is no install spec in the registry entry, but the SKILL.md says the CLI 'auto-runs a bootstrap step that installs missing Python dependencies and refreshes the local webmail-monitor shim.' That implies dynamic installation or downloading code at runtime, yet no trusted source/URL or release host is specified. The lack of included code plus an implied bootstrapping installer is a risky mismatch.
Credentials
The skill declares no required environment variables or config paths, but the instructions require access to an Edge profile, the user's Desktop, and persistent runtime files (runtime/monitor.log, desktop workbook/folders). Asking for none of these in metadata while instructing operations on sensitive local artifacts is inconsistent and prevents pre-install review of what credentials or profiles will be used.
Persistence & Privilege
The skill is explicitly designed to run as a detached, persistent background process on the user's machine and to keep an Edge profile open for mailbox login. Although the registry flags do not force 'always: true', the technical behavior described (ExecutionPolicy Bypass, background daemon, PID tracking, persistent profile reuse) gives it substantial local persistence. Combined with the missing scripts/install details, this raises risk of long-lived code running without clear provenance.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install webmail-email-monitor-skill - 安装完成后,直接呼叫该 Skill 的名称或使用
/webmail-email-monitor-skill触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.1
- Improved documentation in SKILL.md with clear instructions, rules, and operating procedures for running the email monitor on Windows.
- Expanded explanations on default behaviors, Python-first boundaries, and the division of logic between scripts and prompts.
- Explicit guidance for handling mailbox login, workflow automation, and persistent Edge profiles.
- Listed required local output artifacts and enforced specific Excel row structure for processed emails.
- Added detailed prerequisites and reuse requirements for cross-machine compatibility.
- Provided standard command-line usage examples for starting, stopping, checking status, and bootstrapping the monitor.
元数据
常见问题
myskil 是什么?
Monitor Outlook and other common webmail inboxes in a persistent Edge profile, process new messages as a detached local background task, capture complete mes... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 82 次。
如何安装 myskil?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install webmail-email-monitor-skill」即可一键安装,无需额外配置。
myskil 是免费的吗?
是的,myskil 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
myskil 支持哪些平台?
myskil 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 myskil?
由 Jizhidemu52(@jizhidemu52)开发并维护,当前版本 v1.0.1。
推荐 Skills