JS X Monitor
v1.0.0X.com (Twitter) 账号监控自动化 — 定时抓取指定账号最新推文,发现新内容即时推送通知到消息渠道
⭐ 0· 41·0 current·0 all-time
byJS@imjszhang
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name/description (monitor X accounts and notify) match the code and SKILL.md. The skill depends on OpenClaw-injected helpers (x_get_profile, openclaw_send_message), js-eyes, and js-search-x as documented; requiring Node is appropriate for the provided scripts.
Instruction Scope
SKILL.md and scripts only access the declared config/state paths (~/.openclaw/x-monitor), use OpenClaw-provided APIs for fetching profiles and sending notifications, and call openclaw cron to schedule tasks. No instructions to read unrelated system files or to send data to unexpected external endpoints are present (the only external URL is a user-facing link to x.com).
Install Mechanism
There is no remote install/download specified in the metadata; the repository contains local Node scripts and a manifest. No external archive downloads or third-party package installs are performed by the skill itself.
Credentials
The skill does not request environment variables or credentials and instead relies on the user's browser login (via js-eyes) and OpenClaw runtime APIs, which is proportionate. Minor inconsistency: README mentions an "API Token ~$1/month" cost, but no token handling or external paid API is used in the code — likely informational or leftover text.
Persistence & Privilege
The skill does not set always:true. It creates scheduled tasks through `openclaw cron` to run periodic checks, which is expected for a monitoring tool — this gives the skill persistent scheduled execution within OpenClaw but not elevated system privileges outside OpenClaw.
Assessment
This skill appears internally consistent for local monitoring of X.com accounts using your browser login and OpenClaw. Before installing: 1) Ensure you trust the skill author or review the included code (it's provided) since it will write config/state under ~/.openclaw/x-monitor and create OpenClaw cron jobs. 2) Confirm you are comfortable with the JS-Eyes browser integration (it reuses your browser session to access X.com). 3) Verify your OpenClaw messaging channels (feishu/weixin/discord) are configured as the skill will call openclaw_send_message to post notifications. 4) Note the README's mention of an "API Token" appears unused in code — if you see prompts for tokens during setup, treat them with caution and ask the author why they're needed.Like a lobster shell, security has layers — review code before you run it.
latestvk9742egqwgk8kgaqya7mbtra71841a7g
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
📡 Clawdis
OSWindows · macOS · Linux
Binsnode