pp-x-twitter
Warn
Audited by Socket on May 17, 2026
1 alert found:
AnomalyAnomalySKILL.md
LOWAnomalyLOW
SKILL.md
Purpose and capabilities mostly align: this is an X/Twitter automation skill backed by a same-org CLI and MCP server. The main risks are sensitive manual cookie/bearer extraction, unpinned installer paths, arbitrary webhook output delivery, and support for public/posting actions. Overall this looks coherent rather than deceptive, but it is a medium-risk skill because it handles powerful account credentials and enables externally visible actions.
Confidence: 87%Severity: 63%
Audit Metadata