Back to skill
Skillv3.8.5
VirusTotal security
twitterapi-io · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 4:12 AM
- Hash
- b9bc61173d4886a7a22a86f5eeea93b3b0448581ade0d738f94978642e144b5c
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: twitterapi-io Version: 3.8.5 The skill bundle provides a comprehensive and well-documented interface for the TwitterAPI.io service, covering 67 endpoints for reading and writing Twitter data. While the skill handles highly sensitive information, including Twitter passwords, 2FA secrets, and session cookies, this behavior is strictly aligned with its stated purpose of facilitating account-based actions via an unofficial API. The documentation (SKILL.md and read-endpoints.md) proactively identifies and warns about security risks, such as the transmission of session cookies in GET parameters for DM history and a known backend bug in profile updates, which suggests transparency rather than malicious intent. No evidence of data exfiltration to unauthorized domains, malicious code execution, or prompt injection was found.
- External report
- View on VirusTotal