ClawHub
Back to skill
v1.0.0

X Twitter Post Publisher

ReviewClawScan verdict for this skill. Analyzed May 1, 2026, 2:43 PM.

Analysis

This skill is built to post publicly to X/Twitter using a logged-in browser session, but it lacks clear final-approval/account scoping and references a missing PowerShell automation script.

GuidanceOnly install or use this if you are comfortable with an agent publishing directly to your X/Twitter account. Before posting, confirm the active browser profile/account and exact post text, and do not run the referenced PowerShell script unless it is included and reviewed.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation
SeverityHighConfidenceHighStatusConcern
SKILL.md
Verify the Post button is enabled
7. Click Post
8. Verify by searching for a unique snippet

The workflow directs the agent to perform the final public publishing action through browser automation, but the artifacts do not require a last user confirmation of the exact text and target account before clicking Post.

User impactThe agent could publish the wrong text, publish from the wrong logged-in account, or post before the user has reviewed the final content.
RecommendationRequire an explicit confirmation step showing the target account and exact post text immediately before publishing, or stop at a draft and let the user click Post manually.
Agentic Supply Chain Vulnerabilities
SeverityMediumConfidenceHighStatusConcern
SKILL.md
Run the bundled script:

powershell -ExecutionPolicy Bypass -File scripts/publish-x-post.ps1

The reviewed file manifest contains only SKILL.md and references/troubleshooting.md, so the referenced bundled script is absent from the artifact set; the main automation cannot be inspected or provenance-checked.

User impactA user may be unable to verify what the posting automation does, or may try to run a similarly named script from outside the reviewed package.
RecommendationInclude the referenced script in the package, declare OpenCLI/PowerShell requirements, and avoid or clearly justify ExecutionPolicy Bypass.
Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse
SeverityMediumConfidenceHighStatusConcern
SKILL.md
Use this skill to publish to X/Twitter through the user's existing logged-in browser context.

The skill uses the user's authenticated browser session as its authority, while the registry metadata declares no primary credential or required config path, and the account/profile scope is not clearly bounded.

User impactThe skill can act as whichever X/Twitter account is logged into the browser context, which could lead to unintended account use.
RecommendationDeclare the browser-session dependency, require the agent to confirm the active X account before posting, and prefer a dedicated browser profile or scoped posting account.