Moltbook Daily Digest (中文版)
Analysis
The skill mostly does what it says—fetches Moltbook posts and translates summaries—but it uses a Moltbook API key, an unpinned translation dependency, and an external translation provider.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.
pip3 install deep-translator
The setup uses an unpinned PyPI dependency. This is purpose-aligned for translation, but there is no version pin or install specification in the provided metadata.
POST /posts ... POST /posts/{post_id}/commentsThe reference file documents public write actions even though the digest script only fetches posts. This is not evidence of automatic posting, but it is broader API capability documentation than the stated read-only digest purpose needs.
Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.
creds_file = os.path.expanduser("~/.config/moltbook/credentials.json") ... return data.get("api_key")The script can read a local Moltbook API key when the environment variable is absent. This is needed for Moltbook API access and is disclosed in SKILL.md, but it is still account credential access.
Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.
to_chinese = GoogleTranslator(source='auto', target='zh-CN') ... zh_summary = to_chinese.translate(summary_text)
The script sends selected Moltbook post text to Google Translate via the translator library. This is disclosed by the skill description and fits the purpose, but it is an external provider data flow.