ClawHub

X use

v1.0.1

Use when the user wants to collect tweets, search Twitter/X, get tweet details, set up site-use, or browse cached posts. Examples: 'set up site-use', 'grab l...

1· 62·0 current·0 all-time
by@williampenrose
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Pending
View report →
OpenClawOpenClaw
Benign
medium confidence
Purpose & Capability
Name/description ask for Twitter/X scraping and the skill requires the site-use binary / installs the site-use npm package — this is proportional and expected.
Instruction Scope
Runtime instructions stick to invoking site-use commands, launching an isolated Chrome profile, and storing results in the local knowledge base. Minor privacy considerations: the user must log into their account in the launched browser and collected tweets are Auto-stored locally; the skill references files under ~/.site-use (screenshots, cache).
Install Mechanism
Install uses the node/npm package 'site-use' which is a typical distribution method for this functionality. npm packages run code on install and at runtime — review the package source/maintainer before installing.
Credentials
The skill requests no environment variables or external credentials. It relies on the user's browser session for Twitter access, which is proportionate to the stated purpose.
Persistence & Privilege
always is false and the skill is user-invocable. It does not request permanent platform-wide privileges or modify other skills' configs.
Assessment
This skill appears internally consistent: it installs and runs the 'site-use' npm package and uses a launched Chrome profile to collect tweets, then stores results locally (cache/knowledge base and screenshots under ~/.site-use). Before installing, review the npm package repository and maintainer (https://github.com/WilliamPenrose/site-use), consider installing in a sandbox or VM, and be aware you'll be asked to log into Twitter in the opened browser (that session provides the tool access to your account). The skill does not ask for API keys or other secrets, but npm packages run code on your system — only proceed if you trust the package source.

Like a lobster shell, security has layers — review code before you run it.

latestvk971db2ch9nchfkps94nwd1qa18438zp

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🌐 Clawdis
Binssite-use

Install

Node
Bins: site-use
npm i -g site-use

Comments