ClawHub

X Tweet Fetcher

PassAudited by ClawScan on May 1, 2026.

Overview

This skill appears to do what it claims: fetch public X/Twitter content through FxTwitter without credentials or local persistence.

This skill looks safe for fetching public tweet content. Before installing, understand that it relies on the third-party FxTwitter service, which can see the tweet URLs you request, and treat returned tweet/article text as untrusted content rather than agent instructions.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Low
#ASI01: Agent Goal Hijack
What this means

A fetched tweet or article could contain text that tries to influence the agent if the agent treats it as instructions.

Why it was flagged

The skill returns externally sourced tweet and article text into the agent context. This is core to the skill, but that text may contain instructions or prompt-injection content from untrusted public posts.

Skill content
"text": tweet.get("text", ""), ... article_data["full_text"] = full_text
Recommendation

Use the fetched content as data only; do not let tweet or article text override the user's task, tool choices, or safety rules.

Info
#ASI07: Insecure Inter-Agent Communication
What this means

FxTwitter can observe which public tweet URLs are requested through this skill.

Why it was flagged

The script sends the requested tweet username and ID to the third-party FxTwitter API. This provider use is disclosed and purpose-aligned, and no credentials or local data are sent.

Skill content
api_url = f"https://api.fxtwitter.com/{username}/status/{tweet_id}" ... urllib.request.urlopen(req, timeout=15)
Recommendation

Avoid using it for tweet lookups you consider sensitive, and be aware that availability and behavior depend on FxTwitter.

Info
#ASI04: Agentic Supply Chain Vulnerabilities
What this means

The skill may not run on systems without Python even though the registry requirements list no binaries.

Why it was flagged

The docs require a Python runtime while the registry requirement list declares no required binaries. This is an operational metadata gap, not evidence of hidden install behavior.

Skill content
- Python 3.7+\n- No external packages (stdlib only)
Recommendation

Confirm Python 3.7 or newer is available before installing or invoking the skill.