Moltbook Daily Digest (中文版)
PassAudited by ClawScan on May 1, 2026.
Overview
The skill mostly does what it says—fetches Moltbook posts and translates summaries—but it uses a Moltbook API key, an unpinned translation dependency, and an external translation provider.
This appears safe for its stated purpose if you intend to fetch Moltbook digests. Before installing, use the least-privileged Moltbook API key available, be aware that translation goes through Google Translate, and consider pinning the deep-translator dependency.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Using the skill may give it access to your Moltbook API key.
The script can read a local Moltbook API key when the environment variable is absent. This is needed for Moltbook API access and is disclosed in SKILL.md, but it is still account credential access.
creds_file = os.path.expanduser("~/.config/moltbook/credentials.json") ... return data.get("api_key")Use a least-privilege or read-only Moltbook key if available, and confirm the credentials file contains only the intended key.
Dependency behavior could change over time if a different package version is installed.
The setup uses an unpinned PyPI dependency. This is purpose-aligned for translation, but there is no version pin or install specification in the provided metadata.
pip3 install deep-translator
Install from a trusted environment and pin or review the deep-translator package version if reproducibility matters.
Content being summarized may be shared with Google Translate for translation.
The script sends selected Moltbook post text to Google Translate via the translator library. This is disclosed by the skill description and fits the purpose, but it is an external provider data flow.
to_chinese = GoogleTranslator(source='auto', target='zh-CN') ... zh_summary = to_chinese.translate(summary_text)
Avoid using the skill for non-public or sensitive Moltbook content unless you are comfortable with that external translation flow.
If an agent used the broader reference instead of the digest script, it could attempt account-mutating Moltbook actions.
The reference file documents public write actions even though the digest script only fetches posts. This is not evidence of automatic posting, but it is broader API capability documentation than the stated read-only digest purpose needs.
POST /posts ... POST /posts/{post_id}/commentsUse a read-only API key if possible and keep agent instructions limited to fetching and summarizing posts.