ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

X Twitter Command Center (Search + Post)

Search X (Twitter) in real time, extract relevant posts, and publish tweets/replies instantly—perfect for social listening, engagement, and rapid content ops.

MIT-0 · Free to use, modify, and redistribute. No attribution required.
2 · 2.8k · 9 current installs · 9 all-time installs
by@0xjordansg-yolo
MIT-0
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name/description match the implementation: the SKILL.md and included python client call https://api.aisa.one to perform read (search, trends, user info) and write (login, post, like, retweet) operations. Requested binaries (curl, python3) and the single env var (AISA_API_KEY) are consistent with calling a third‑party API.
!
Instruction Scope
The runtime instructions explicitly direct the agent (and the user via CLI examples) to POST account login details (username, email, password), optional TOTP, and proxy credentials to the external AIsa endpoints to enable posting. While that is coherent with the advertised 'post' feature, it means user account credentials are transmitted to a third‑party service—this is sensitive and not handled/mitigated by the skill (no guidance to use OAuth or limited-scope tokens). The SKILL.md does not instruct the agent to read unrelated system files, but it does instruct transmission of highly sensitive data to an external endpoint.
Install Mechanism
No install spec — lowest installation risk. The skill is instruction‑plus a small Python client (included). No downloads from unknown URLs, no archive extraction, and no creation of unexpected system artifacts.
!
Credentials
Only AISA_API_KEY is declared and used to authenticate to api.aisa.one, which is proportionate for a third‑party API client. However, the skill's operation requires users to provide their Twitter account credentials and proxy details (via CLI/requests) which are not declared as environment variables but are still collected and transmitted. Requiring a user's platform login/password (and proxy credentials) is a high‑sensitivity request and should be explicitly justified and documented—there is no indication of safer alternatives (OAuth) in the materials.
Persistence & Privilege
always:false (no forced inclusion), model invocation allowed (normal). The skill does not request writing/modifying other skills or system configs, and there is no install step that persists new tools globally.
What to consider before installing
This skill calls a third‑party service (api.aisa.one) to read/search Twitter and to log in and post on your behalf. If you plan to use it: - Understand that to post it requires providing your Twitter account credentials (email/username, password, optional TOTP) and proxy details; those will be sent to the AIsa service. Treat this like giving someone your password. Only do this if you trust the provider. - Prefer an OAuth or official API token flow where possible; avoid sharing your primary account password. Consider creating a dedicated/test account for automation. - Verify the reputation, privacy policy, and security practices of aisa.one / api.aisa.one before handing over credentials. - Limit AISA_API_KEY scope and rotate credentials if you stop using the skill. Do not store Twitter passwords in persistent, shared places. - Review the included scripts/twitter_client.py (it confirms the endpoints and data sent) and test read-only operations first (which only need AISA_API_KEY) before attempting login/posting. - If you are not comfortable sharing account credentials with a third party, do not enable the write/login features of this skill.

Like a lobster shell, security has layers — review code before you run it.

Current versionv1.0.0
Download zip
latestvk971vc4mph7jzrtxa3xkm8jean80jqkx

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🐦 Clawdis
Binscurl, python3
EnvAISA_API_KEY
Primary envAISA_API_KEY

SKILL.md

OpenClaw Twitter 🐦

Twitter/X data access and automation for autonomous agents. Powered by AIsa.

One API key. Full Twitter intelligence.

🔥 What Can You Do?

Monitor Influencers

"Get Elon Musk's latest tweets and notify me of any AI-related posts"

Track Trends

"What's trending on Twitter worldwide right now?"

Social Listening

"Search for tweets mentioning our product and analyze sentiment"

Automated Engagement

"Like and retweet posts from @OpenAI that mention GPT-5"

Competitor Intel

"Monitor @anthropic and @GoogleAI - alert me on new announcements"

Quick Start

export AISA_API_KEY="your-key"

Core Capabilities

Read Operations (No Login Required)

# Get user info
curl "https://api.aisa.one/apis/v1/twitter/user/info?userName=elonmusk" \
  -H "Authorization: Bearer $AISA_API_KEY"

# Get user's latest tweets
curl "https://api.aisa.one/apis/v1/twitter/user/user_last_tweet?userName=elonmusk" \
  -H "Authorization: Bearer $AISA_API_KEY"

# Advanced tweet search (queryType is required: Latest or Top)
curl "https://api.aisa.one/apis/v1/twitter/tweet/advanced_search?query=AI+agents&queryType=Latest" \
  -H "Authorization: Bearer $AISA_API_KEY"

# Search top tweets
curl "https://api.aisa.one/apis/v1/twitter/tweet/advanced_search?query=AI+agents&queryType=Top" \
  -H "Authorization: Bearer $AISA_API_KEY"

# Get trending topics (worldwide)
curl "https://api.aisa.one/apis/v1/twitter/trends?woeid=1" \
  -H "Authorization: Bearer $AISA_API_KEY"

# Search users by keyword
curl "https://api.aisa.one/apis/v1/twitter/user/search_user?keyword=AI+researcher" \
  -H "Authorization: Bearer $AISA_API_KEY"

# Get tweets by ID
curl "https://api.aisa.one/apis/v1/twitter/tweet/tweetById?tweet_ids=123456789" \
  -H "Authorization: Bearer $AISA_API_KEY"

# Get user followers
curl "https://api.aisa.one/apis/v1/twitter/user/user_followers?userName=elonmusk" \
  -H "Authorization: Bearer $AISA_API_KEY"

# Get user followings
curl "https://api.aisa.one/apis/v1/twitter/user/user_followings?userName=elonmusk" \
  -H "Authorization: Bearer $AISA_API_KEY"

Write Operations (Requires Login)

⚠️ Warning: Posting requires account login. Use responsibly to avoid rate limits or account suspension.

# Step 1: Login first (async, check status after)
curl -X POST "https://api.aisa.one/apis/v1/twitter/user_login_v3" \
  -H "Authorization: Bearer $AISA_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{"user_name":"myaccount","email":"me@example.com","password":"xxx","proxy":"http://user:pass@ip:port"}'

# Step 2: Check login status
curl "https://api.aisa.one/apis/v1/twitter/get_my_x_account_detail_v3?user_name=myaccount" \
  -H "Authorization: Bearer $AISA_API_KEY"

# Send tweet
curl -X POST "https://api.aisa.one/apis/v1/twitter/send_tweet_v3" \
  -H "Authorization: Bearer $AISA_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{"user_name":"myaccount","text":"Hello from OpenClaw!"}'

# Like a tweet
curl -X POST "https://api.aisa.one/apis/v1/twitter/like_tweet_v3" \
  -H "Authorization: Bearer $AISA_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{"user_name":"myaccount","tweet_id":"1234567890"}'

# Retweet
curl -X POST "https://api.aisa.one/apis/v1/twitter/retweet_v3" \
  -H "Authorization: Bearer $AISA_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{"user_name":"myaccount","tweet_id":"1234567890"}'

# Update profile
curl -X POST "https://api.aisa.one/apis/v1/twitter/update_profile_v3" \
  -H "Authorization: Bearer $AISA_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{"user_name":"myaccount","name":"New Name","bio":"New bio"}'

Python Client

# User operations
python3 {baseDir}/scripts/twitter_client.py user-info --username elonmusk
python3 {baseDir}/scripts/twitter_client.py tweets --username elonmusk
python3 {baseDir}/scripts/twitter_client.py followers --username elonmusk
python3 {baseDir}/scripts/twitter_client.py followings --username elonmusk

# Search & Discovery
python3 {baseDir}/scripts/twitter_client.py search --query "AI agents"
python3 {baseDir}/scripts/twitter_client.py user-search --keyword "AI researcher"
python3 {baseDir}/scripts/twitter_client.py trends --woeid 1

# Post operations (requires login)
python3 {baseDir}/scripts/twitter_client.py login --username myaccount --email me@example.com --password xxx --proxy "http://user:pass@ip:port"
python3 {baseDir}/scripts/twitter_client.py post --username myaccount --text "Hello!"
python3 {baseDir}/scripts/twitter_client.py like --username myaccount --tweet-id 1234567890
python3 {baseDir}/scripts/twitter_client.py retweet --username myaccount --tweet-id 1234567890

API Endpoints Reference

EndpointMethodDescription
/twitter/user/infoGETGet user profile
/twitter/user/user_last_tweetGETGet user's recent tweets
/twitter/user/user_followersGETGet user followers
/twitter/user/user_followingsGETGet user followings
/twitter/user/search_userGETSearch users by keyword
/twitter/tweet/advanced_searchGETAdvanced tweet search
/twitter/tweet/tweetByIdGETGet tweets by IDs
/twitter/trendsGETGet trending topics
/twitter/user_login_v3POSTLogin to account
/twitter/send_tweet_v3POSTSend a tweet
/twitter/like_tweet_v3POSTLike a tweet
/twitter/retweet_v3POSTRetweet

Pricing

APICost
Twitter read query~$0.0004
Twitter post/like/retweet~$0.001

Every response includes usage.cost and usage.credits_remaining.

Get Started

  1. Sign up at aisa.one
  2. Get your API key
  3. Add credits (pay-as-you-go)
  4. Set environment variable: export AISA_API_KEY="your-key"

Full API Reference

See API Reference for complete endpoint documentation.

Files

3 total
Select a file
Select a file to preview.

Comments

Loading comments…