Post See Social Scheduler

v1.0.0

Turn your OpenClaw into an autonomous social media manager using the Post See API. Use when scheduling, posting, or managing content across Instagram, Linked...

⭐ 0· 119·0 current·0 all-time

byKishan@makani20

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for makani20/post-see-scheduler.

Previewing Install & Setup.

Prompt PreviewInstall & Setup

Install the skill "Post See Social Scheduler" (makani20/post-see-scheduler) from ClawHub.
Skill page: https://clawhub.ai/makani20/post-see-scheduler
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Required env vars: POST_SEE_API_KEY
Required binaries: ffmpeg
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Bare skill slug

openclaw skills install post-see-scheduler

ClawHub CLI

Package manager switcher

npx clawhub@latest install post-see-scheduler

Security Scan

VirusTotal

Benign

View report →

OpenClaw

Benign

high confidence

ℹ

Purpose & Capability

Name/description, code, and runtime instructions align with a Post See API social scheduler: the only required credential is POST_SEE_API_KEY and ffmpeg is justified for optional local-video frame extraction. Minor inconsistency: the bundle contains Node 18+ CLI scripts (actions/*.js) and skill.json documents Node as the runtime, but the top-level requirements list provided to the registry only names ffmpeg (Node is not listed as a required binary). This is likely benign (the platform may supply Node), but you should expect Node 18+ if you plan to run the included scripts locally.

✓

Instruction Scope

SKILL.md instructs only API usage against https://api.post-see.com, local ffmpeg for optional frame extraction, and uses workspace/account IDs returned by the API. It does not instruct reading arbitrary system files or exfiltrating unrelated secrets. It does warn agents may read workspace files and that media must be hosted at public HTTPS URLs.

✓

Install Mechanism

No install/download spec is present (instruction-only install). The package includes source files but does not fetch arbitrary external archives or run an installer; there are no unknown download URLs or extract steps.

✓

Credentials

Only POST_SEE_API_KEY is required (with optional POST_SEE_WORKSPACE_ID and POST_SEE_TIMEZONE). These map to the described API usage and are proportionate to scheduling/publishing functionality.

✓

Persistence & Privilege

The skill is not force-installed (always: false) and does not request system-wide configuration or other skills' credentials. It can be invoked autonomously by the agent (platform default), which is expected for this type of integration.

Assessment

This skill appears to do what it claims, but check a few practical things before enabling it: (1) Only provide a least-privilege POST_SEE_API_KEY and test in a sandbox workspace first; keys like this can publish on your connected accounts. (2) If you plan to run the bundled Node CLIs, ensure Node 18+ is available locally (the registry metadata did not explicitly list Node). (3) Be cautious about using local files — the skill suggests hosting media at public HTTPS URLs; making media public can leak content. (4) Revoke the API key if you suspect exposure, and avoid committing keys into repos or .env files that get shared. If you want extra assurance, inspect/approve network endpoints and review the Post See account permissions for the API key before granting access.

✗

actions/post-see-client.js:10

Environment variable access combined with network send.

Confirmed safe by external scanners

Static analysis detected API credential-access patterns, but both VirusTotal and OpenClaw confirmed this skill is safe. These patterns are common in legitimate API integration skills.

Like a lobster shell, security has layers — review code before you run it.

Runtime requirements

Binsffmpeg

EnvPOST_SEE_API_KEY

Primary envPOST_SEE_API_KEY

latestvk97a2fp7ddw6n6e00wty1tdg4s83q6kj

119downloads

0stars

1versions

Updated 1mo ago

v1.0.0

MIT-0

Social Media Assistant (via Post See / post-see.com)

Autonomously manage social scheduling and publishing through the Post See REST API.

Canonical spec: download or reference https://api.post-see.com/openapi.yaml (same host as the docs).

Bundled helpers (optional): this package includes prompts/generate-post.txt, prompts/schedule-post.txt, skill.json, and Node CLIs under actions/*.js (Node 18+). The runtime instructions below are sufficient without executing those files.

Setup

Create a Post See account at post-see.com.
Connect your social accounts and link them into a workspace.
Enable API access and create an API key (pk_live_… as shown in the API docs “Try it”).
Store your API key in workspace .env:
```
POST_SEE_API_KEY=pk_live_xxxxx
```

Optional: save the OpenAPI document locally for offline reference:

curl -sS https://api.post-see.com/openapi.yaml -o post-see-openapi.yaml

ffmpeg — used when you work from local video files (extract a frame to read on-screen text before writing captions). Post See accepts public HTTPS URLs in media_urls; host files on your storage/CDN first.

Auth

All requests use a Bearer token:

Authorization: Bearer <POST_SEE_API_KEY>
Content-Type: application/json

Base URL: https://api.post-see.com/api/v1

Responses

Success: { "data": …, "meta": { "api_version": "1.0", … } }
Error: { "error": { "code", "message", "details?" }, "meta": … } — branch on error.code (e.g. unauthorized, workspace_forbidden, post_locked, validation_error).

Workspace scope

Pass workspace_id as a query parameter (or X-Workspace-Id where supported). Resolve membership before trusting any id. Roles: readonly can read; creating/updating/deleting posts requires collaborator, admin, or owner.

Optional: timezone query or X-Timezone (IANA) for schedule display or naive local times.

Platform slugs (`platform` field)

Documented today (lowercase; treat as opaque — new values may appear): bluesky, discord, facebook, instagram, linkedin, mastodon, pinterest, threads, x, youtube. X uses x, not twitter. Always match the platform string returned from GET /social-accounts for the chosen connection.

Immediate publish on create (POST /posts, per OpenAPI): linkedin, facebook, instagram, x, pinterest, bluesky, threads. Others (e.g. youtube, mastodon, discord) support drafts and scheduled posts via scheduled_at / worker — do not assume synchronous publish in the create response.

Core workflow

1. List workspaces (get `workspace_id`)

GET /workspaces

Use data.workspaces[] → id, name, myRole.

2. Get linked social accounts

GET /social-accounts?workspace_id=<workspace_id>

Returns data.connections[] with id (use as connection_id), platform, platform_username, is_connected, needs_reauth, and for Pinterest optionally default_pin_destination_link. OAuth tokens are never returned. If needs_reauth is true, the user must reconnect in the product before publish will succeed.

3. List and inspect posts

GET /posts?workspace_id=<id>&status=<draft|scheduled|published|fail>&platform=<slug>&page=1&limit=20
GET /posts/{id}

4. Create post

POST /posts

Required: workspace_id.

Typical JSON body:

{
  "workspace_id": 7,
  "connection_id": 42,
  "platform": "instagram",
  "text": "Caption and #hashtags",
  "caption": "Optional alias for text",
  "scheduled_at": "2026-04-01T14:00:00Z",
  "media_urls": ["https://cdn.example.com/asset.jpg"]
}

Omit scheduled_at / date_time for drafts.
media_urls: public HTTPS URLs only (upload to your storage first).
Pinterest: board_id or boardId; optional default outbound URL may exist on the connection.
YouTube: post_title, youtube_options (object, default {}) for product-specific hints (privacy, category, shorts vs long-form, etc.).
All platforms: platform_options (object, default {}) for forward-compatible flags (visibility, audience, etc.).

Deprecated: social_account_ids — prefer connection_id.

201 may include data.publish_results when immediate publish was attempted.

5. Update or delete posts

PUT /posts/{id}
DELETE /posts/{id}

Use PUT, not PATCH. 409 post_locked if the post is published or cannot be changed.

6. Check publish results

GET /post-results?workspace_id=<id>&post_id=<optional>&page=1&limit=20
GET /post-results/{id}

Inspect data.results[]: status (pending | success | fail), external_post_url, nested error (e.g. publish_failed).

7. Current user (optional)

GET /me
PATCH /me

Team / workspace admin (optional)

Routes under /workspaces/... (members, invitations, transfer) are destructive or role-sensitive. Use only when the user explicitly asks; see OpenAPI for owner vs admin requirements.

Tips

Resolve workspace_id and connection_id before every create/update; guessing ids causes 403 or empty lists.
Stagger posts across the day for better reach when scheduling manually.
Keep hashtags focused (roughly 4–5 where appropriate for the network).
Re-fetch openapi.yaml when integrating — new fields and platforms appear there first.
Use a test workspace and non-production accounts before automating brands you care about.

Safety

Use a least-privilege API key; revoke from the dashboard if leaked. This skill implies the agent may read .env, workspace files, and public media URLs you provide — avoid sensitive paths and shared/synced folders you do not trust. If you do not want autonomous posting, require human confirmation before POST /posts or restrict agent autonomy in your OpenClaw config.

Comments

Loading comments...