ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

X Apify

v1.0.8

Fetch X/Twitter data via Apify actors. Search tweets, get user profiles, retrieve specific tweets with replies. Features local caching to save API costs. Wor...

0· 1.1k·1 current·1 all-time
byRobby@robbyczgw-cla
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
The skill's stated purpose is to fetch X/Twitter data via Apify and the SKILL.md, package.json, and code all reference APIFY_API_TOKEN and optionally APIFY_ACTOR_ID and X_APIFY_CACHE_DIR — those are reasonable for the described purpose. However, the registry summary at the top (Requirements: Required env vars: none, Primary credential: none, Homepage: none) conflicts with the included SKILL.md/package.json and the scripts. That registry-level omission is an incoherence: the skill will not work without APIFY_API_TOKEN but the record does not declare it.
Instruction Scope
The runtime instructions and scripts stay within the expected scope: they read APIFY_API_TOKEN/APIFY_ACTOR_ID/X_APIFY_CACHE_DIR, call api.apify.com endpoints, and read/write a local cache directory inside the skill root. The cache path is explicitly constrained to the skill directory to avoid path traversal. No unexpected external endpoints or broad system probing are present in the visible code.
Install Mechanism
There is no automated install/download step (instruction-only skill with included Python scripts). That is lower risk. The scripts require the third-party 'requests' library, but there is no install automation — users must pip install it themselves. No remote arbitrary downloads or extracted archives are performed by the skill.
!
Credentials
The code and SKILL.md require a single credential (APIFY_API_TOKEN) and optionally APIFY_ACTOR_ID and X_APIFY_CACHE_DIR, which are proportionate to the task. The concern is the metadata mismatch: the top-level registry view claims 'required env vars: none' and 'primary credential: none' despite the code requiring APIFY_API_TOKEN. That omission could mislead users or automated systems about what secrets will be used. Also note Apify usage may incur billing/credits; the default actor has a cost profile and the changelog indicates actor changes — verify the actor id/cost before use.
Persistence & Privilege
The skill is not force-installed (always: false). It only persists its own cache under the skill directory and respects an environment override but prevents escaping the skill root. It does not modify other skills or global agent settings in the visible code.
What to consider before installing
Before installing or running this skill: - Expect to provide an APIFY_API_TOKEN (the SKILL.md and code require it). The registry summary shown to you currently omits this — confirm the platform metadata is updated or the skill will fail. - Review and confirm the default APIFY_ACTOR_ID and any per-run costs on Apify (actors cost credits; check the actor's pricing and your account limits). Running actors can incur charges. - Install 'requests' in the Python environment (pip install requests) or run in a contained environment (virtualenv/container). - Because the skill accepts an APIFY token, consider using a scoped or dedicated token and avoid putting secrets into VCS. The SKILL.md already warns about .env files; follow that guidance. - Verify the source repository / homepage (package.json points to a GitHub repo, but the registry summary lists none). Prefer skills with an accessible repository and issues tracker so you can inspect updates and provenance. - The code contains a changelog entry noting fixes for an arbitrary file write vulnerability in prior versions; ensure you are using the published patched version and consider reviewing the cache-related code if you have elevated security requirements. If these inconsistencies (missing declared env in registry, unknown source) worry you, treat the skill as untrusted until the publisher fixes the metadata or provides a verified upstream repository.

Like a lobster shell, security has layers — review code before you run it.

latestvk9781azrgstnqt2fm4kn94pt0h82n7pa

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

Binspython3

Comments