Social Ops

This skill appears to implement a plausible role-based social automation system, but several mismatches and missing declarations mean you should be cautious before installing: - Inconsistency checks: SKILL.md requires SOCIAL_OPS_DATA_DIR and the scripts call 'openclaw' and python3, but the package metadata lists no required env vars or binaries. Confirm those requirements with the author or set them deliberately. - Cron installer: The included script will upsert OpenClaw cron jobs (create or edit scheduled runs). Run it with --dry-run first to see proposed commands, and review any cron-job messages and schedules before enabling. Only run the script if you trust the repository and understand the jobs it will create. - Local file access: The skill is designed to read/write many files under $SOCIAL_OPS_DATA_DIR and may optionally read arbitrary local files listed in Local-File-References.md. Ensure your SOCIAL_OPS_DATA_DIR does not contain secrets, credentials, or sensitive data. Restrict Local-File-References to safe files only. - Credentials & Moltbook access: The role docs and cron prompts reference Moltbook API usage and 'credentials file auth' but no credential env vars are declared. Clarify how Moltbook credentials are provided and stored. Prefer storing credentials in the platform's secret store rather than in repository files. - Test in a safe environment: Before enabling in production, create a dedicated data directory containing only non-sensitive test content, run the installer with --dry-run, and inspect the cron commands. Monitor the first runs to confirm behavior. - If you cannot confirm the missing declarations (required binaries, env vars, credential handling) or do not trust the unknown source/owner, avoid installing the cron jobs and audit all role files for any paths that reference secrets or non-repo directories.