XHunt Hot Tweets
PassAudited by ClawScan on May 1, 2026.
Overview
This is a coherent instruction-only skill for fetching public XHunt trend pages, with only disclosed external browsing and user-directed install steps to notice.
This skill appears safe for its stated purpose. Before installing, verify the source if using the manual GitHub commands, and remember that using the skill sends browsing/fetch requests to XHunt and summarizes third-party public content that may change or be incomplete.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
When used, the agent will contact XHunt and summarize content from its public trend pages; results depend on that site’s availability and page structure.
The skill directs the agent to browse or fetch a third-party website. This is expected and scoped to XHunt ranking pages, but users should know external web access is part of normal operation.
优先 `browser` 打开目标 URL + `snapshot(refs=aria)`... 若 browser 失败,降级 `web_fetch`
Use it for the intended trend-summary requests and verify important links or statistics before relying on them.
If installing manually from GitHub, the files placed in the local skill directory will come from that repository and replace the existing contents of that skill folder.
The README offers a manual GitHub installation path that copies files into the local skills directory and deletes existing files at that destination. This is user-directed and scoped, not automatic, but it is still a supply-chain step users should verify.
git clone https://github.com/DoTheWorkNow/xhunt-hot-tweets-skill.git mkdir -p ~/.openclaw/workspace/skills/xhunt-hot-tweets rsync -a --delete ./xhunt-hot-tweets-skill/ ~/.openclaw/workspace/skills/xhunt-hot-tweets/
Install from a trusted source, confirm the repository and destination path before running the commands, and avoid running the manual install commands from an unexpected directory.