Auto Publisher
ReviewAudited by ClawScan on May 10, 2026.
Overview
This skill matches its stated purpose, but it can publish videos publicly across multiple social accounts and store/use account sessions with limited built-in confirmation or scoping.
Install only if you are comfortable granting browser automation access to your social-media creator accounts. Run it visibly first, confirm the exact video/title/platforms before publishing, protect or delete local account/session files, and avoid enabling scheduled/headless posting unless you have a clear review process.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A video could be posted publicly to a connected social account once the script runs, including from an agent-triggered workflow.
The shown workflow programmatically clicks the platform publish button after uploading/filling fields, with no visible pre-publication confirmation or dry-run guard.
publish_button.click()
print("✅ 抖音视频已发布")Use only with explicit user approval for each post and platform. Prefer adding a dry-run mode, a final confirmation prompt, and requiring an explicit platform list instead of publishing broadly by default.
Anyone or any automation with access to the local config/session files may be able to act on connected social accounts.
The skill creates account configuration fields for social-platform authentication, giving the automation delegated access to user accounts. The registry metadata lists no primary credential or required environment variables.
"username": "", "password": "", "qr_login": True
Use dedicated creator accounts where possible, avoid storing passwords, protect the config directory, and review/remove stored sessions after use.
A scheduled task could continue posting at configured times if the user forgets it is enabled.
The README documents scheduled execution through Windows Task Scheduler. This is user-directed and aligned with scheduled publishing, but it can make posting continue later without an interactive browser session.
Windows 任务计划程序... 参数:`auto_publisher.py "video.mp4"`
Only create scheduled tasks intentionally, keep a list of active publishing schedules, and disable them when no longer needed.
The local environment will depend on third-party package and browser downloads.
The setup installs an external Python package and browser runtime without pinned versions. This is normal for Playwright-based automation but still expands the local software supply chain.
pip install playwright playwright install chromium
Install in a virtual environment, use trusted package indexes, and consider pinning Playwright versions for reproducibility.