ClawHub

X Search

v1.0.0

Search X (Twitter) posts using the xAI API. Use when the user wants to find tweets, search X/Twitter, look up what people are saying on X, or find social med...

66· 8.4k·20 current·20 all-time
by@jaaneek
MIT-0OfficialHighlighted
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description describe searching X via the xAI Grok API; the only required binary is python3 and the only required env var is XAI_API_KEY, which is exactly what the code uses to call https://api.x.ai/v1/responses.
Instruction Scope
SKILL.md instructs running the included Python script or setting XAI_API_KEY in openclaw config; the script only constructs a JSON request to the xAI Responses API, validates flags, and formats the API response. It does not read unrelated files or send data to other endpoints.
Install Mechanism
Install spec is a single brew formula for python (reasonable to provide python3). No downloads from untrusted URLs or archive extraction are present.
Credentials
Only XAI_API_KEY is required and used. The code reads that single env var to set an Authorization Bearer header; no additional secrets or unrelated credentials are requested.
Persistence & Privilege
always is false, no skill-level persistent or system-wide configuration changes are made. The SKILL.md mentions an optional entry in ~/.openclaw/openclaw.json but the code does not automatically modify other skills or global configs.
Assessment
This skill appears to do exactly what it says: it sends search queries to the xAI Responses API (https://api.x.ai/v1/responses) using the XAI_API_KEY you provide. Before installing: (1) verify you trust the x.ai service and the API key you will use (prefer a scoped/read-only key if available); (2) review the included scripts if you want to confirm there are no other network calls (they only call the x.ai endpoint); and (3) be aware that any query you run will be transmitted to x.ai along with your API key in the Authorization header. If you do not trust that endpoint or the key's scope, do not provide your API key.

Like a lobster shell, security has layers — review code before you run it.

latestvk97dh7kfn3pm4hq3m6rhdj4fzs8383jw

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

𝕏 Clawdis
Binspython3
EnvXAI_API_KEY
Primary envXAI_API_KEY

Install

Install Python (brew)
Bins: python3
brew install python

Comments