pp-x-twitter

Warn

Audited by Socket on May 17, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

Purpose and capabilities mostly align: this is an X/Twitter automation skill backed by a same-org CLI and MCP server. The main risks are sensitive manual cookie/bearer extraction, unpinned installer paths, arbitrary webhook output delivery, and support for public/posting actions. Overall this looks coherent rather than deceptive, but it is a medium-risk skill because it handles powerful account credentials and enables externally visible actions.

Confidence: 87%Severity: 63%
Audit Metadata
Analyzed At
May 17, 2026, 07:54 AM
Package URL
pkg:socket/skills-sh/mvanhorn%2Fprinting-press-library%2Fpp-x-twitter%2F@704ac01fb65cf7ead3be98d9e9dbde12820747d2
Security Audit — socket — pp-x-twitter