billclaw
Manages financial data by syncing transactions, fetching bills from Gmail, and exporting to accounting formats for OpenClaw users.
Install this skill
or
62/100
Security score
The billclaw skill was audited on Feb 15, 2026 and we found 8 security issues across 3 threat categories, including 1 high-severity. Review the findings below before installing.
Categories Tested
Security Issues
medium line 90
Access to hidden dotfiles in home directory
SourceSKILL.md
| 90 | 2. Configuration file (`~/.firela/billclaw/config.json`) |
medium line 188
Access to hidden dotfiles in home directory
SourceSKILL.md
| 188 | - **Location**: `~/.firela/billclaw/` (your home directory) |
medium line 194
Access to hidden dotfiles in home directory
SourceSKILL.md
| 194 | Configuration is stored in `~/.firela/billclaw/config.json`: |
medium line 91
Access to .env file
SourceSKILL.md
| 91 | 3. OpenClaw config under `skills.entries.billclaw.env` |
high line 59
Access to system keychain/keyring
SourceSKILL.md
| 59 | - **System keychain**: Tokens encrypted in your platform's secure keychain |
low line 85
External URL reference
SourceSKILL.md
| 85 | - **Plaid**: https://dashboard.plaid.com/ |
low line 86
External URL reference
SourceSKILL.md
| 86 | - **Gmail**: https://console.cloud.google.com/apis/credentials |
low line 234
External URL reference
SourceSKILL.md
| 234 | - **npm packages**: https://www.npmjs.com/org/firela |
Scanned on Feb 15, 2026
View Security DashboardGitHub Stars 2.2K
Rate this skill
Categoryfinance accounting
UpdatedApril 29, 2026
openclawapidatabasefinancial-analystaccountantcfo-fpabusiness-developmentoperations-managerplaidgmailfinance accountingsalesoperations
openclaw/skills