ClawHub
Back to skill
v1.1.0

Social Media Scheduler

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 5:56 AM.

Analysis

This appears to be a local-only social media drafting and planning skill, with no evidence of posting, credential use, network access, or hidden code.

GuidanceThis skill looks suitable if you want a local social media drafting planner. Before installing, be aware that it creates a local data folder and saves drafts, ideas, settings, and calendars there; it does not show evidence of posting to social networks or sending data externally.

Findings (2)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Unexpected Code Execution
SeverityLowConfidenceHighStatusNote
SKILL.md
On first message, create data directory: `mkdir -p ~/.openclaw/social-media-scheduler`

The skill instructs a local shell command on first use. The command is simple and scoped to creating the skill's own directory, but users should notice that shell execution is requested.

User impactThe agent may create a local folder in your home directory for this skill's data.
RecommendationAllow this only if you are comfortable with the local directory being created; no elevated permissions should be needed.
Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Memory and Context Poisoning
SeverityLowConfidenceHighStatusNote
SKILL.md
All data stored under `~/.openclaw/social-media-scheduler/`: `settings.json`, `calendar.json`, `ideas.json`, `drafts.json`

The skill persists brand details, content plans, ideas, and saved drafts for future use. This is purpose-aligned, but it creates reusable local context.

User impactDrafts and brand planning information may remain on disk and be reused by the skill later.
RecommendationAvoid storing sensitive unpublished content unless you are comfortable with local persistence, and delete the skill folder if you want to reset or remove saved data.