ClawHub
Back to skill
v1.1.2

Postzee Skill

ReviewClawScan verdict for this skill. Analyzed May 1, 2026, 2:15 AM.

Analysis

Postzee is a coherent social-media generation tool, but it can spend account credits and publish generated content immediately to connected social accounts without a consistent final confirmation.

GuidanceInstall only if you are comfortable giving Postzee account authority to the agent. Before using it, ask the agent to create drafts by default and require final confirmation of the generated media, caption, channels, publish time, and credit cost before anything is posted.

Findings (4)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation
SeverityMediumConfidenceHighStatusConcern
SKILL.md
`POSTZEE_CREATE_POST` ... `type: "now" — publish immediately (**default when user says "post" or "publish"**)` ... `Quick Actions` ... `Execute the full flow without asking at each step`

The skill authorizes immediate public posting through a tool call and explicitly allows full generate-and-post flows without step-by-step approval.

User impactGenerated or mistaken content could be published to connected social accounts before the user reviews the exact media, caption, channels, timing, and credit cost.
RecommendationUse a draft-first workflow or require an explicit final confirmation for the content, selected channels, publish time, and credit cost before calling POSTZEE_CREATE_POST.
Agentic Supply Chain Vulnerabilities
SeverityLowConfidenceMediumStatusNote
metadata
Source: unknown; Homepage: none

The registry metadata does not identify a verified source or homepage for a skill that asks users to connect a credentialed remote MCP service.

User impactUsers have less provenance information when deciding whether this is the legitimate Postzee integration before granting account authority.
RecommendationVerify the publisher and MCP URL from Postzee's official dashboard/documentation before installing or entering credentials.
Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse
SeverityMediumConfidenceHighStatusNote
SKILL.md
`metadata: {"primaryEnv": "POSTZEE_API_KEY"}` ... `Ask for the MCP URL` ... `https://api.postzee.app/mcp/.../sse` ... `Store the MCP URL via the primaryEnv configuration.`

The skill requires a Postzee credential or credential-bearing MCP URL that delegates access to the user's Postzee account and connected social channels.

User impactAnyone or any agent path with access to this credential may be able to use the connected Postzee integration, including listing channels, generating media, and creating posts.
RecommendationTreat the API key or MCP URL as a secret, use the least-privileged/revocable credential available, and revoke or rotate it if it is exposed.
Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Insecure Inter-Agent Communication
SeverityLowConfidenceHighStatusNote
SKILL.md
`Copy your MCP URL from https://dashboard.postzee.app/settings` ... `POSTZEE_GENERATE_IMAGE` ... `imageUrls`: reference images ... `POSTZEE_CREATE_POST`

Prompts, reference image URLs, avatar scripts, generated media URLs, and post content are sent through a remote MCP service and may then be sent to social platforms or AI media providers.

User impactPrivate photos, scripts, captions, or unpublished marketing content may leave the chat environment when the user uses generation or posting features.
RecommendationOnly provide media and text you are comfortable sending to Postzee and downstream providers, and review Postzee's privacy/retention terms for generated media and connected channels.