Back to skill
Skillv1.0.0
ClawScan security
Grok Twitter Query · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
SuspiciousMar 5, 2026, 7:43 AM
- Verdict
- suspicious
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill mostly matches its stated purpose (querying Grok for Twitter content) but includes a suspicious default API endpoint (api.cheaprouter.club) that could forward your GROK_API_KEY to a third party and a claim about
- Guidance
- This skill's code is small and does what it says (sends your prompt to a chat-completions endpoint), but the SKILL.md and script default the API URL to a third-party domain (api.cheaprouter.club). Before using: 1) Do not paste production or high-privilege API keys unless you verify the endpoint owner; change GROK_API_URL to the official provider endpoint if you have one. 2) Treat the GROK_API_KEY as sensitive — prefer a throwaway/test key until you confirm the service. 3) Remember the script does not call Twitter APIs itself; it relies on the model to know/lookup real-time Twitter content. 4) If you cannot verify api.cheaprouter.club (ownership, privacy policy, TLS cert), consider editing the script to point to a trusted vendor or decline to install. If you want help identifying the correct official Grok/X API endpoint, provide what provider/key you intend to use and I can help verify it.
Review Dimensions
- Purpose & Capability
- noteName/description claim to query Grok for Twitter/X content aligns with the code: the script sends prompts to a Grok-like chat completions endpoint and relies on the model to summarize tweets. However the SKILL.md's statement that 'Grok has real-time access to Twitter/X data' is a model-capability claim (not enforced by the skill) and may be misleading; the skill does not call Twitter APIs itself.
- Instruction Scope
- concernInstructions are limited to setting GROK_API_KEY/GROK_API_URL/GROK_MODEL and running the script, which is narrow. BUT the SKILL.md and the script default GROK_API_URL to https://api.cheaprouter.club/v1/chat/completions — an unexpected third-party endpoint that instructions encourage users to use unless they override it. That directs user secrets and prompts to an unvetted external host.
- Install Mechanism
- okNo install spec; the skill is instruction + a small Python script that uses requests. Nothing is downloaded or written by an installer. This is low-risk from an install perspective.
- Credentials
- concernThe only required secret is GROK_API_KEY, which is proportional for a wrapper that calls a Grok API. However the default GROK_API_URL is a non-official domain: sending your GROK_API_KEY there would expose it to a third party. The skill asks for a key but does not clearly identify the expected provider for that key (official Grok/X endpoint vs third-party relay).
- Persistence & Privilege
- okThe skill does not request persistent/always-on privileges, does not modify agent/system configs, and is user-invocable only. No elevated privileges requested.