ClawHub
Back to skill

Security audit

Twitter Automation Suite

Security checks across malware telemetry and agentic risk

Overview

This Twitter/X automation skill is purpose-aligned but should be reviewed because it uses account credentials and can publish live posts without a final confirmation safeguard.

Review carefully before installing. Use a dedicated automation account if possible, avoid reusing your main Twitter/X password, protect the .env file, and expect that running the post command can publish immediately. Prefer a version that uses OAuth or scoped tokens, supports dry-run/preview, and requires explicit confirmation before posting or scheduled automation.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill asks users to store Twitter username, password, and email for automated posting/reply actions without clearly explaining the security and privacy risks. If those credentials are mishandled, logged, reused elsewhere, or abused by the automation, an attacker or faulty workflow could take over the account, post unwanted content, or trigger suspension and reputational damage.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
This script performs a real, irreversible account action by clicking the live tweet submission button without any confirmation prompt, dry-run mode, or explicit safeguard. In the context of a Twitter automation skill, malformed arguments, operator mistakes, or downstream prompt/content generation errors can immediately publish unintended content to a live account.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

Detected: suspicious.dangerous_exec

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
index.js:85