X Twitter Automataion (Search + Post)
AdvisoryAudited by Static analysis on Apr 30, 2026.
Overview
No suspicious patterns detected.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If invoked for posting, the agent may publish visible tweets or media from the authorized account.
The skill can cause the agent to publish to a public social account. This is consistent with the stated purpose, but it is a high-impact action that should only be used for explicit posting requests.
When the user asks to publish content to X/Twitter: ... Try `post` first when the user intent is to publish content.
Use clear wording when you want a draft versus an actual post, and review content carefully before asking the agent to publish.
The AIsa API key and posting requests authorize access to the provider relay; if the relay URL is changed to an untrusted host, credentials and content could be exposed there.
The client sends the AIsa API key as a bearer token to the configured relay endpoint. The default endpoint is the stated AIsa API, but the destination can be changed by an environment variable.
aisa_api_key = getattr(args, "aisa_api_key", None) or get_env("AISA_API_KEY") ... base_url = normalize_base_url(get_env("TWITTER_RELAY_BASE_URL", DEFAULT_BASE_URL)) ... "Authorization": f"Bearer {aisa_api_key}"Protect the AISA_API_KEY, leave TWITTER_RELAY_BASE_URL unset unless you intentionally trust the alternate endpoint, and revoke OAuth/API access if no longer needed.
Any media file passed to the skill may be sent to AIsa’s relay and then to X/Twitter.
Selected local media files are transmitted through the provider relay before posting. This is disclosed and purpose-aligned, but users should understand that the relay receives those files.
The Python client reads the local file and sends it to the relay backend as `multipart/form-data`. The relay backend uploads the media to Twitter/X and then publishes the tweet.
Only attach files you intend to post publicly, and avoid passing private or unrelated local file paths.