Security audit
AIsa Twitter API
Security checks across malware telemetry and agentic risk
Overview
The package appears to do what it says: a Python-based wrapper that communicates with the AIsa relay (api.aisa.one) for Twitter/X research and OAuth-gated posting and requires only a single relay API key and python3.
This skill will send requests (including your AISA_API_KEY) and any user-attached media to the AIsa relay at api.aisa.one by default. Only install if you trust that third-party relay and are willing to give that API key authority to read/search and to publish on behalf of authorized accounts. Be cautious with attachments (they will be uploaded to the relay), keep the AISA_API_KEY secret, consider using a limited/rotate-able key, and test publishing flows with a non-critical account first. If you need an official Twitter/X integration or want to avoid a relay, prefer tooling that speaks directly to provider APIs you control.
VirusTotal
No VirusTotal findings
Static analysis
No suspicious patterns detected.
