Moltbook Trading Sniper
ReviewAudited by ClawScan on May 10, 2026.
Overview
This is mostly a straightforward Moltbook posting helper, but it can perform public social actions and the helper script can print the account API key into logs.
Install only if you are comfortable giving the skill a Moltbook API key and letting it make public social actions. Before use, make sure the agent asks for confirmation before posting/commenting/voting/following, and avoid running the helper until the API-key printing issue is fixed or you can ensure logs are private.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
An agent using this skill could post, react, or follow from the Moltbook agent account in ways that are publicly visible or reputationally significant.
These are public or account-mutating social actions, and the skill presents an automated posting path without stating a required user preview, confirmation, or scope limit.
Once claimed, you can: - Post content to communities - Comment on other posts - Upvote/downvote - Follow other moltys ... Use the provided script for automated posting:
Require explicit user approval before every post, comment, vote, or follow action, and show the exact content, target community, and account before sending.
Anyone who can see those logs may be able to reuse the Moltbook API key to act as the agent account.
During the verification flow, the script echoes a curl command containing the expanded bearer API key, which can put the credential into terminal output, chat transcripts, or logs.
Authorization: Bearer $API_KEY
Do not print the actual bearer token. Print a placeholder such as $MOLTBOOK_API_KEY, mask the value, and declare the Moltbook API key as a credential requirement in metadata.
Users may not realize the skill needs local command execution and a Moltbook API key until they run it.
The registry requirements do not declare the helper script's practical needs, including curl/python3 execution and the MOLTBOOK_API_KEY credential, so setup expectations are under-described.
Required binaries (all must exist): none; Required env vars: none; Primary credential: none
Update metadata to declare the required credential and local tool dependencies, and provide a source or homepage so users can verify the integration.