add-gmail-tool

SUSPICIOUS: The skill's purpose matches its Gmail capabilities, and the stub-credential pattern avoids storing raw tokens in the container. The main risks are supply-chain trust in a third-party archived/personal MCP package, broad mailbox action scope, and a proxy-style OneCLI token injection path that places sensitive email traffic through an intermediary rather than a direct official client integration.