Outlook Web Skill

Reads the user's Outlook web inbox, calendar, and Microsoft Teams via a managed Chrome session — no Microsoft Graph API, no app registration. Invoke via node outlook.js <subcommand> from the skill root directory. This skill will NEVER send, delete, move, reply to, forward, flag, unflag, accept, or decline any email, Teams message, or calendar item.

Safety Constraint: Read-Only

This skill enforces an Action Policy with default: deny. Only snapshot, navigation, and read operations are permitted at the browser layer. The calling agent MUST NOT attempt to use this skill to send, reply, delete, move, flag, or accept/decline anything — these operations are blocked at the browser level, not just by convention.

Setup

Create a .env file at the skill root (add .env to .gitignore — it contains paths to credentials):

OUTLOOK_BASE_URL=https://your-company.com/mail   # Full URL of your Outlook web inbox
OUTLOOK_BROWSER_PATH=/path/to/managed/chrome     # Path to managed Chrome or Edge binary (tilde ok)
OUTLOOK_BROWSER_PROFILE=/path/to/chrome/profile  # Path to Chrome profile with Entra SSO tokens (tilde ok)

Tilde expansion (~) in OUTLOOK_BROWSER_PATH and OUTLOOK_BROWSER_PROFILE is handled automatically.