secure-gmail
Secure Gmail skill using Composio brokered OAuth — no raw tokens stored locally. Reads, searches, and drafts emails with least-privilege enforcement. Blocks send and delete at the Composio API gateway level, not just in code. Use when user asks to check inbox, find specific emails by sender or subject, summarize unread threads, or create reply drafts without sending. Requires COMPOSIO_API_KEY in .env and Gmail connected at app.composio.dev. Do NOT use for sending emails — use a send-confirmed skill with human approval instead.
Why use this skill?
Safely read and draft emails with the OpenClaw secure-gmail skill. Managed OAuth through Composio ensures your credentials stay protected while you automate.
Install via CLI (Recommended)
clawhub install openclaw/skills/skills/coinvest518/secure-gmailWhat This Skill Does
The secure-gmail skill is a specialized OpenClaw agent designed to provide secure, brokered access to Gmail. Unlike standard email integrations, this skill operates through the Composio platform, ensuring that no sensitive OAuth tokens are ever stored on your local machine or exposed to agent memory. By leveraging a least-privilege security model, the skill restricts agent operations to read-only tasks and draft creation, while blocking all destructive or outgoing communication commands like sending or deleting at the API gateway level. It is the ideal solution for users who need to manage their inbox via AI assistance while maintaining strict security boundaries.
Installation
To install this skill, ensure you have the OpenClaw environment ready, then execute the following in your terminal: clawhub install openclaw/skills/skills/coinvest518/secure-gmail. After installation, navigate to the skill directory at ~/clawd/skills/secure-gmail/ and create a .env file to house your COMPOSIO_API_KEY. You must ensure your Gmail account is correctly connected to your app.composio.dev dashboard. Finally, run pip install python-dotenv composio to satisfy the dependency requirements before the first execution.
Use Cases
This skill is perfect for inbox management tasks where manual oversight is required for sensitive actions. Use it to scan for urgent messages, retrieve information buried in email chains, or prepare responses to clients and colleagues. Because it only creates drafts, it provides a safe 'sandbox' for the AI to process information and draft content without the risk of accidentally sending unfinished or inaccurate messages.
Example Prompts
- "Check my inbox and summarize the last five unread emails from my team."
- "Find any emails from John regarding the quarterly budget project and tell me the most recent update."
- "Draft a reply to the latest email from Sarah saying that I have received her documents and will review them by Friday."
Tips & Limitations
Note that this skill is specifically designed for passive observation and drafting. It does not possess the authorization to send emails or modify your inbox labels; any attempt to perform these actions will be intercepted and rejected by the Composio API gateway. If you need to send emails, you must manually review your Gmail drafts. If the agent fails to connect, verify your COMPOSIO_API_KEY in the environment file and ensure your Google account permissions are active in the Composio dashboard.
Metadata
Not sure this is the right skill?
Describe what you want to build — we'll match you to the best skill from 16,000+ options.
Find the right skillPaste this into your clawhub.json to enable this plugin.
{
"plugins": {
"official-coinvest518-secure-gmail": {
"enabled": true,
"auto_update": true
}
}
}Tags(AI)
Flags: external-api, file-read