ClawHub

Upload Videos🎥, Photos📸 & Text🖊️ to TikTok, Instagram, YouTube, X, LinkedIn, Facebook, Threads, Pinterest, Reddit & Bluesky via Upload-Post API

v1.0.0

Upload content to social media platforms via Upload-Post API. Use when posting videos, photos, text, or documents to TikTok, Instagram, YouTube, LinkedIn, Facebook, X (Twitter), Threads, Pinterest, Reddit, or Bluesky. Supports scheduling, analytics, FFmpeg processing, and upload history.

45· 7.9k·39 current·40 all-time
byVíctor Cavero@victorcavero14
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name/description match the SKILL.md: it documents a single external service (upload-post.com) for posting to many social platforms. There are no unexpected environment variables, binaries, or install steps requested that would be unrelated to a posting/scheduling service.
Instruction Scope
The instructions show curl examples that upload local files (e.g., -F "video=@video.mp4") and reference an /ffmpeg endpoint plus local ffmpeg CLI examples in references. That is reasonable for a posting tool, but it means the agent will need access to any files you ask it to upload. The SKILL.md does not instruct the agent to read unrelated system files or secrets.
Install Mechanism
This is instruction-only (no install spec, no code files to execute). No downloads or third‑party installs are required by the skill itself.
Credentials
The documentation expects an API key from upload-post.com (Authorization: Apikey). The skill does not request other credentials or unrelated environment variables—proportional to the described functionality.
Persistence & Privilege
always is false and there is no installation that writes persistent config. Model invocation is enabled by default (normal for skills); there are no combined red flags that would make autonomous invocation unusually risky.
Assessment
This skill is a documentation guide for a third‑party service (upload-post.com). Before enabling or using it: verify the service's trustworthiness and privacy/terms; only provide an API key you control and rotate it if needed; avoid uploading sensitive files or secrets through the service; test with a non‑production profile first; limit which social accounts/pages you connect; and be aware the agent (if allowed to run autonomously) could post using that API key — only enable autonomous actions if you trust the service and the skill.

Like a lobster shell, security has layers — review code before you run it.

latestvk97dwhks97kkbn0gjfxmnqd9fh7zxxbr

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments