AIsa Twitter Command Center
v1.0.0Search X/Twitter profiles, tweets, trends, and OAuth-gated posting through AIsa. Use when: the user needs Twitter research, monitoring, or engagement workflo...
⭐ 0· 21·0 current·0 all-time
Security Scan
Capability signals
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
OpenClaw
Benign
high confidencePurpose & Capability
Name/description align with the included Python clients and the declared requirement (AISA_API_KEY). The skill talks to a relay (https://api.aisa.one) for read/search and OAuth-backed posting; asking for an AISA_API_KEY is proportionate to that purpose.
Instruction Scope
SKILL.md and references instruct the agent to run the provided scripts and to pass local workspace file paths for media. That is expected for posting, but it means any workspace files attached for publishing will be read and uploaded to the relay backend. The instructions explicitly forbid password/cookie collection and require returning authorization links rather than auto-opening them unless requested.
Install Mechanism
No install spec — instruction-only plus bundled Python scripts. Requiring python3 is reasonable. Nothing in the package downloads arbitrary third-party code at install time.
Credentials
Only AISA_API_KEY is required and is the primary credential. That matches the relay-based design, but granting this key allows the relay to act on your behalf (read/search and post). Ensure you trust the relay operator and limit the key's scope if possible.
Persistence & Privilege
The skill is not always-enabled and does not request special system persistence or modify other skills. It uses standard CLI scripts and only reads workspace files when asked to upload media.
Assessment
This package appears to do what it says: it calls a relay service (api.aisa.one) and requires a single secret (AISA_API_KEY). Before installing, confirm you trust the AIsa relay operator because: any media files you pass will be uploaded to that service; the API key can be used to post/read on your behalf via the relay. Do not provide Twitter passwords or cookies (the skill already forbids this). If you are privacy-sensitive, create a limited-scope AISA_API_KEY, test with non-sensitive content, and review the relay's privacy/security policy or source code. If you need more assurance, review the full Python scripts locally to verify behavior (they are bundled) and avoid using --open-browser unless you initiated it.Like a lobster shell, security has layers — review code before you run it.
Runtime requirements
🐦 Clawdis
Binspython3
EnvAISA_API_KEY
Primary envAISA_API_KEY
latest
AIsa Twitter Command Center
Search X/Twitter profiles, tweets, trends, and OAuth-gated posting through AIsa. Use when: the user needs Twitter research, monitoring, or engagement workflows. Supports search, monitoring, and approved posting.
When to use
- The user needs Twitter/X research, monitoring, posting, or engagement workflows.
- The user wants profiles, timelines, trends, lists, communities, or Spaces.
- The user wants approved posting without sharing passwords.
High-Intent Workflows
- Research an account or conversation thread.
- Monitor a keyword, trend, or competitor.
- Authorize and publish a post after explicit approval.
Quick Reference
python3 scripts/twitter_client.py --helppython3 scripts/twitter_oauth_client.py --help
Setup
AISA_API_KEYis required for AIsa-backed API access.- Use repo-relative
scripts/paths from the shipped package. - Prefer explicit CLI auth flags when a script exposes them.
Example Requests
- Research recent AI agent conversations on X
- Search how users are reacting to a product launch on Twitter
- Authorize and publish a short product update post
Guardrails
- Do not ask for passwords, cookies, or browser credentials.
- Do not claim posting succeeded until the API confirms it.
- Return authorization links instead of relying on auto-open behavior.
Comments
Loading comments...