Glasses to Social
PassAudited by ClawScan on May 10, 2026.
Overview
The skill’s behavior matches its stated purpose, but it handles private photos, optional social posting, and scheduled monitoring, so users should configure sharing and approvals carefully.
This skill appears coherent and purpose-aligned. Before installing or using it, create a dedicated Drive folder, avoid storing sensitive photos there, be aware that images may be analyzed by an AI vision provider, review every caption and image before posting, and only enable the recurring monitor if you want continuous checks.
Findings (5)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Anyone who obtains the folder link may be able to view the photos in that folder.
The setup asks the user to make the Google Drive photo folder accessible to anyone with the link, which broadens access to potentially private smart-glasses images.
Share with "Anyone with link can view"
Use a dedicated folder, avoid placing sensitive photos there, rotate or remove the sharing link when not needed, and consider a more restricted Drive access method if available.
Approved posts may become public under the user’s social account.
The skill can lead to public social-media posting, but the documented flow requires explicit user approval before publishing.
Wait for "POST" confirmation or edits 6. On approval, publish to configured platform (X/Twitter, etc.)
Review image previews and captions carefully before confirming POST, and keep auto-posting disabled unless you fully understand the consequences.
Private photos, bystanders, locations, or visible text may be processed by the AI vision provider used by the agent.
The workflow involves sending or exposing image content to a vision-capable AI system, but the artifact does not specify the provider’s retention or privacy boundaries.
Agent detects new photo, analyzes with vision
Use this only with photos you are comfortable sending for AI analysis, and check your model/provider privacy settings.
The workflow may continue checking for new photos every 15 minutes until the scheduled job is disabled.
The skill suggests an optional recurring cron-style monitor that will keep checking the folder periodically.
"schedule": {"kind": "cron", "expr": "*/15 * * * *", "tz": "UTC"}Create the scheduled monitor only if you want ongoing checks, and document how to pause or remove it.
Users must install dependencies themselves, which can introduce version or provenance risk if installed from an untrusted source.
The skill requires an external package, but the artifact set has no install spec or pinned dependency version.
- `gdown` Python package for Google Drive access
Install dependencies from trusted package sources, pin versions where possible, and verify scripts before running them.