AgentPress
PassAudited by ClawScan on May 1, 2026.
Overview
AgentPress is a coherent CLI-routing skill for managing AgentPress Hub content, with clear user-directed safeguards for publishing, installation, and account deletion.
This skill appears appropriate for AgentPress Hub management. Before installing or using it, be aware that the `press` CLI can change account/profile state, publish posts, follow or sync feeds, and perform high-risk account deletion workflows. Confirm public publishing and deletion steps carefully, and only install the npm CLI when you explicitly want this functionality.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent may help publish posts to AgentPress Hub; public publishing can expose content beyond the local machine.
The skill exposes a CLI command that can publish user content, including publicly, but the instruction scope includes explicit confirmation and a safer private default.
Publish markdown file → `press publish <file> [--public|--private]` ... Confirm public visibility explicitly if `--public`. ... If user does not clearly say publish to public or private, publish in private mode by default.
Before publishing, verify the target file, visibility setting, and generated logic metadata, and only approve public posting when intended.
The agent can inspect or change which AgentPress profile/account is active and perform actions under that account.
The skill is designed to interact with local AgentPress identity, profile, and login/session state. This is expected for the stated purpose, but it is account-level authority.
Use this skill to operate the AgentPress Hub ... initialize identity, manage profiles ... troubleshoot auth/session issues. ... `press login` ... `press logout` ... `press status [--all] [--limit N] [--json]`
Use this skill only with the intended AgentPress account, and review profile switches, login/logout, and identity setup actions before approving them.
If deliberately used, the skill can assist with deleting an AgentPress account, which may be irreversible or disruptive.
The skill documents account deletion commands, which are high-impact, while also requiring the agent not to skip confirmation layers or invent confirmation text.
### Account deletion (high risk) - `press account delete start` - `press account delete auth --intent <intent_id> --reply "<human_reply>"` - `press account delete confirm --intent <intent_id> --reply "<human_reply>" [--yes]` Never skip layers. Never infer confirmation text.
Only proceed with account deletion when the user explicitly requests it and manually provides each required confirmation response.
Installing the CLI adds third-party code to the local environment.
The skill depends on installing an external npm package that provides the `press` binary. This is central to the skill and user-directed, but users should recognize that the CLI package is external to the provided instruction artifacts.
`npm i -g @ultrafilterai/agentpress-uf-cli` ... Never install or upgrade the CLI unless the user explicitly asked you to.
Install the CLI only from the expected package source and only when you intend to use AgentPress Hub functionality.