← Back to Skills Marketplace
1067873313

X Twitter Poster

by 1067873313 · GitHub ↗ · v0.1.3 · MIT-0
cross-platform ⚠ suspicious
477
Downloads
0
Stars
0
Active Installs
4
Versions
Install in OpenClaw
/install x-twitter-poster
Description
X (Twitter) 发推 Skill。使用 Playwright 连接用户已登录的 Chrome 浏览器,自动填写并发送推文。 适用场景: - 用户要求"发推"、"发一条推"、"发推文"、"发推特" - 用户要求"帮我发一条关于 XX 的推" - 用户要求"发一条推文,内容是..." 核心能力: - 连接用户...
Usage Guidance
This skill does what it says: it connects to a Chrome instance via the remote debugging (CDP) port to type and send a tweet. That design inherently allows full access to your browser (tabs, cookies, sessions), so only enable the CDP port in a controlled context. Before using: (1) review post_tweet.js yourself or have someone you trust review it; (2) run it with a throwaway Chrome profile or inside a disposable VM/container, not your primary account; (3) install dependencies (npm install) in an isolated environment; (4) manually start Chrome with --remote-debugging-port and close that port when done; (5) verify network activity if you are worried about data exfiltration — the included code does not call external endpoints beyond connecting to the local CDP and navigating the browser to x.com. If you cannot follow these precautions, do not enable the CDP port or run this skill.
Capability Analysis
Type: OpenClaw Skill Name: x-twitter-poster Version: 0.1.3 The skill requires users to launch Chrome with the `--remote-debugging-port=28800` flag, which exposes the browser's DevTools Protocol (CDP) to any local process. This allows full control over the browser session, including access to cookies, saved passwords, and all open tabs. While `post_tweet.js` performs the stated task of posting to X (Twitter) and the documentation in `SKILL.md` and `README.md` provides extensive security warnings, the architectural reliance on an exposed debugging port to bypass anti-bot mechanisms is a high-risk design that creates a significant security vulnerability.
Capability Assessment
Purpose & Capability
Name/description, SKILL.md, and the code all consistently implement posting to X by connecting Playwright to a user Chrome instance over CDP. The dependency on Playwright and the need for a CDP URL is appropriate for this functionality.
Instruction Scope
The instructions explicitly require opening Chrome with --remote-debugging-port and connecting to that local endpoint, which grants the skill access to all browser tabs, cookies, and sessions. That scope is necessary for the stated approach but is high-risk; the SKILL.md and README explicitly warn about these risks and advise mitigations.
Install Mechanism
There is no install spec in the registry, but package.json declares playwright as a dependency. Installing Playwright (npm install) is expected for this skill but is a non-trivial dependency (binaries, browsers). No suspicious download URLs or extract steps are present.
Credentials
The code reads CDP_URL and X_USERNAME from environment variables (with sensible defaults). CDP_URL is sensitive because it exposes the browser; however, requesting it is proportional to the chosen implementation. Registry metadata lists no required env vars, which is a minor metadata/documentation mismatch but not a functional inconsistency.
Persistence & Privilege
The skill does not request persistent 'always' inclusion, does not modify other skills or global agent settings, and does not store credentials. It runs on-demand and is not granted extraordinary platform privileges.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install x-twitter-poster
  3. After installation, invoke the skill by name or use /x-twitter-poster
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.1.3
x-twitter-poster 0.1.3 - Improved security instructions with a clear "安装前检查清单" for safer use. - Added sensitive config variable explanations and handling practices. - Strengthened general safety recommendations and practical security tips. - No code logic changed; documentation enriched for end-user safety and clarity.
v0.1.2
x-twitter-poster v0.1.2 - Added cross-platform support: send key is now Meta+Enter (Mac) or Ctrl+Enter (Windows/Linux), auto-detected by script. - Enhanced security section: added clear warnings about CDP port risks and best practices for safe usage. - The username for post verification is now configurable via function parameter or X_USERNAME environment variable. - Updated documentation for usability and security clarity. - No external data is sent; code safety emphasized in docs.
v0.1.1
x-twitter-poster 0.1.1 - Enhanced documentation: SKILL.md expanded with deeper explanations, troubleshooting, and step-by-step startup guidance. - Clarified that the skill inherits the user’s session from their actively running Chrome, avoiding detection and login issues. - Simplified description and requirements for greater readability and confidence in correct operation. - Updated technical details in usage instructions for more robust and reliable tweet posting. - No core API or interface changes; all updates pertain to docs and clarity.
v0.1.0
x-twitter-poster v0.1.0 - Initial release: Automates posting tweets via Playwright by connecting to a logged-in Chrome browser session. - Posts are composed and sent using keyboard emulation (keyboard.type & Meta+Enter), required due to X/Twitter’s React-based form validation. - Automatically navigates to user profile after posting to confirm tweet delivery. - For use when users ask to post tweets or publish specific content on X/Twitter. - Requires Chrome running in CDP mode and an already logged-in user session.
Metadata
Slug x-twitter-poster
Version 0.1.3
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 4
Frequently Asked Questions

What is X Twitter Poster?

X (Twitter) 发推 Skill。使用 Playwright 连接用户已登录的 Chrome 浏览器,自动填写并发送推文。 适用场景: - 用户要求"发推"、"发一条推"、"发推文"、"发推特" - 用户要求"帮我发一条关于 XX 的推" - 用户要求"发一条推文,内容是..." 核心能力: - 连接用户... It is an AI Agent Skill for Claude Code / OpenClaw, with 477 downloads so far.

How do I install X Twitter Poster?

Run "/install x-twitter-poster" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is X Twitter Poster free?

Yes, X Twitter Poster is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does X Twitter Poster support?

X Twitter Poster is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created X Twitter Poster?

It is built and maintained by 1067873313 (@1067873313); the current version is v0.1.3.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463556 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259610 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200551 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191226 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190235 · by oswalpalash

💬 Comments