x2c-socialposter
Pass
Audited by Gen Agent Trust Hub on May 11, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill executes a local Python script
scripts/x2c_social.pyto perform social media management tasks. These operations are well-defined and align with the tool's stated purpose. - [EXTERNAL_DOWNLOADS]: The skill communicates with an API hosted on Supabase (
eumfmgwxwjyagsvqloac.supabase.co) and uploads media to S3-compatible storage via pre-signed URLs. These network operations are standard for the service's functionality. - [CREDENTIALS_UNSAFE]: The skill manages authentication through the
X2C_API_KEYenvironment variable. It includes logic to check for the key's presence and guides the user on how to obtain and configure it securely, avoiding hardcoded secrets.
Audit Metadata