Marketplace · Other

Other skillsUpdated May 25, 2026

gogcli for OpenClaw

gogcli is an open-source Go CLI by Peter Steinberger (steipete) that exposes Gmail and Google Calendar to OpenClaw agents. Here's what it does, how to install it, whether it's safe, and how PortEden adds the access controls and audit log gogcli doesn't ship.

View on ClawHub

gogcli · google · gmail · calendar · openclaw

What this skill does

gogcli is a Go-based command-line tool that wraps Google's Gmail and Google Calendar APIs in a shape OpenClaw agents can call. It ships as a single binary, authenticates via OAuth 2.0 against your own Google Cloud project, and stores refresh tokens in the OS keychain (macOS Keychain, Windows Credential Manager, Linux secret-service). Supported operations cover the Gmail message lifecycle (search with Gmail query syntax, read, send, reply, forward, label, delete) and the Google Calendar event lifecycle (list, create, update, delete, free/busy). It's available as an OpenClaw skill on ClawHub and supports multi-account plus service-account delegation for enterprise use. gogcli is Google-only. It does not support Outlook, Exchange, or Microsoft Graph.

Required tools

GmailGoogle Calendar

Compatible agents

OpenClaw

Grok BuildAny CLI-compatible agent

Add to your agent

Steps 1–2 are identical for every agent — install the porteden binary and authenticate once. Step 3 registers the skill with your runtime.

Install the PortEden CLI

OpenClaw skills delegate every API call to the porteden binary. Install once with Homebrew or Go.

brew install porteden/tap/porteden 
# or
go install github.com/porteden/cli/cmd/porteden@latest

Authenticate

Browser-based login is recommended — credentials are written to your OS keyring. Token-based login is available for headless environments.

porteden auth login 
# headless / CI
porteden auth login --token <PE_API_KEY> 
porteden auth status

Install the gogcli skill

OpenClaw fetches the signed skill bundle and registers its commands with the agent.

openclaw skills install gogcli

How it works

Is gogcli safe to use?

gogcli itself is open source, actively maintained, and stores credentials in your OS keychain — not in plaintext files. The 'safe' question is really about what the agent can do once gogcli is connected: gogcli does not restrict the agent's actions in any way. If you want safety guardrails (read-only mode, draft-only sending, contact blocking, audit logs), you need to put a control layer between gogcli and the agent — which is exactly what PortEden does.

gogcli vs gws (Google Workspace CLI)

gws is Google's own developer sample. It covers more of Google Workspace (Drive, Docs, Sheets, Chat in addition to email/calendar) but is explicitly 'not officially supported' and has the same fundamental gap as gogcli: no access controls, no audit trail. Pick gws if you need broad Workspace coverage; pick gogcli for tighter Gmail/Calendar focus. Pick PortEden if you need either provider plus Outlook and want enforceable rules.

gogcli + PortEden = the access layer gogcli is missing

PortEden runs as a proxy between OpenClaw and Google. Configure gogcli to call PortEden's API instead of Gmail/Calendar directly, and every request is filtered through your access rules: visibility, contact blocking, action limits, time windows, account scope, and field-level redaction. Every request is logged. One click revokes the agent's access entirely.

Deploy org-wide

The same firewall behind every PortEden skill

Provision to teams with role-based access policies
Identity-aware execution — every call ties back to a user
Signed, version-pinned skills
Full audit trail on every tool call
Field-level redaction at egress

See enterprise controls

Peter Steinberger (steipete) — third-party · · Open source

Source on ClawHub

Frequently asked questions

Is gogcli safe to use?

gogcli is open source and stores credentials in your OS keychain, but it does not restrict what the agent can do once connected. For guardrails (read-only, draft-only, contact blocking, audit logs) you need a control layer like PortEden between gogcli and the agent.

Does gogcli support Outlook or Exchange?

No. gogcli is Google-only (Gmail and Google Calendar). For Outlook, Exchange, or Microsoft 365, use PortEden's email and calendar skills instead.

gogcli vs gws: which should I pick?

Pick gws for broad Google Workspace coverage, gogcli for tighter Gmail and Calendar focus, or PortEden if you need either plus Outlook and enforceable access rules with an audit trail.

Related Skills

Secure Gmail Skill

Read, search, send, reply, and triage Gmail from an OpenClaw loop with explicit confirmation on every mutation and PortEden redaction on every fetched body.

View skill v1.0.0

Calendar

Secure Google Calendar Skill

Read, search, create, update, delete, and respond to Google Calendar events with confirmation gates on every mutation and PortEden enforcement on every read.

View skill v1.0.0

Secure Email (Gmail, Outlook, Exchange) Skill

One install gives an OpenClaw agent policy-controlled access to all three mail backends — with field-level redaction applied before a single token leaves your network.

View skill v1.0.5

Use gogcli with the guardrails it was never going to ship.

gogcli is a fine bridge. PortEden gives you the access controls, audit trail, and one-click revocation that any agent touching a real inbox needs.

Talk to sales

Regulated org or 200+ seats? Talk to sales →