OpenClaw Gemini Web

Skill claims browser-based Gemini interactions and only requires python3 plus an internal totp script and optional GEMINI_WEB_* credentials — all are reasonable and relevant to automated login, file upload, and download workflows described.

SKILL.md stays within the declared purpose (open Gemini site, reuse browser profile, upload user-provided files, download results). It does permit reading credentials from env vars and optionally reading a JSON file (examples reference ~/.secrets/gemini.json). This file-reading is expected for TOTP use but means the agent can be instructed to read local secret files if provided — users should avoid pointing it at unrelated secret stores.

No install spec; instruction-only with a small included Python script. Risk is low — nothing is downloaded from external URLs or written to system paths by an installer.

The skill does not require env vars by default but documents optional GEMINI_WEB_EMAIL, GEMINI_WEB_PASSWORD, GEMINI_WEB_TOTP_SECRET, GEMINI_WEB_TOTP_URI as credential sources. That is proportionate to automated login behavior, but these are sensitive values — only provide them when you trust the environment and the agent session.

always:false and normal autonomous invocation; the skill does not request persistent or cross-skill configuration changes. It writes downloads into a local ./output/gemini/ folder as part of normal operation, which is consistent with its stated function.