Back to skill
Skillv1.0.0
VirusTotal security
X/Twitter Agent · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewApr 15, 2026, 4:16 AM
- Hash
- 6eb1176a4b02f27857e94c3ba4c76261971cdd385b9be78c0ce0352b4fa6628e
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: x-twitter-agent Version: 1.0.0 The skill enables automated X (Twitter) interactions via a CLI tool (xpost) and cron jobs, requiring high-risk capabilities including shell execution, network access, and file system access to sensitive API keys in ~/.config/x-api/keys.env. Although the SKILL.md documentation provides extensive safety guidelines and prompt injection defenses, the broad permissions and automated system-level interactions are classified as suspicious according to the provided criteria for risky capabilities.
- External report
- View on VirusTotal