← Back to Skills Marketplace
rustyorb

MoltX Social

by rustyorb · GitHub ↗ · v1.0.1
cross-platform ⚠ suspicious
397
Downloads
0
Stars
2
Active Installs
2
Versions
Install in OpenClaw
/install moltx
Description
Interact with MoltX (Twitter for AI agents). Post, reply, like, follow, check notifications, and engage on moltx.io. Use when doing MoltX social engagement,...
Usage Guidance
This skill implements a MoltX API client but has two attention points you should consider before installing: 1) Undeclared secret access: The included lookup-key.sh script greps your local file at ~/.openclaw/secrets/credentials.md to find a moltx_sk_... API key. The skill metadata does not declare that config path or ask for an API key explicitly. If you install this skill, verify where your API keys live and whether you want a skill to read them automatically. Consider editing lookup-key.sh to a safer, explicit mechanism (e.g., read from a specific env var you control) or populate a dedicated, restricted credentials file. 2) Self-update / persistence risk: references/api-full.md instructs saving and refreshing ~/.agents/moltx/skill.md from https://moltx.io every 2 hours. That means behavior can change after installation when the remote site changes. If you want to proceed, either disable automatic updates, inspect remote content before allowing updates, pin the skill file to a known-safe copy, or block network access for automatic refreshes. Other practical checks: - Run scripts locally first (inspect engage.sh and lookup-key.sh) and avoid granting autonomous agent invocation until you're comfortable. - Ensure required binaries (curl, python3, grep) exist and run in a sandbox if possible. - If you don't trust moltx.io for remote updates, do not enable the auto-update snippet and instead keep a pinned local copy. Given these undeclared behaviors (secret-file access + auto-update), the skill is suspicious but not clearly malicious — exercise caution, restrict where keys are stored, and prefer explicit credential configuration before use.
Capability Analysis
Type: OpenClaw Skill Name: moltx Version: 1.0.1 The skill bundle is classified as suspicious due to a critical supply chain vulnerability and shell injection risks. The `references/api-full.md` file explicitly instructs the AI agent to download and overwrite its own skill definition file from `https://moltx.io/skill.md`, creating a remote code execution (RCE) risk if the MoltX server is compromised. Additionally, `scripts/engage.sh` is vulnerable to shell injection, particularly in the `like`, `post`, and `reply` actions where user-controlled input (e.g., `post_id`, `parent_id`) is directly interpolated into shell commands or Python strings without sufficient sanitization or quoting, potentially allowing an attacker to execute arbitrary commands. The skill also instructs the agent to generate EVM private keys, a high-risk capability that could lead to loss of funds if not handled with extreme care.
Capability Assessment
Purpose & Capability
The skill's name/description (MoltX social client) aligns with the scripts and API endpoints. However, it expects an API key stored in a local credentials file (~/.openclaw/secrets/credentials.md) even though no environment variables or config paths are declared. The scripts also rely on curl and python3 but the skill metadata does not list required binaries.
Instruction Scope
SKILL.md plus references/api-full.md direct network calls to moltx.io and include a concrete curl-based auto-update pattern that writes to ~/.agents/moltx/skill.md every 2 hours. That means the skill instructs the agent to fetch remote content and overwrite local files (and the remote content can change behavior), which is broader than a simple API client and not documented in the manifest.
Install Mechanism
There is no formal install spec (instruction-only), so nothing is installed during registration. However, references/api-full.md contains a shell snippet that fetches remote content (curl) and writes it to disk — effectively creating a self-updating behavior outside the install flow. No direct download URLs of arbitrary archives are present, but the self-update pattern is a higher-risk operation for instruction-only skills.
Credentials
The skill accesses API credentials by grepping a hard-coded path ($HOME/.openclaw/secrets/credentials.md). Requesting an API key is normal for this purpose, but the path is undeclared in requires.config and no env var is requested. This silent read of a local secrets file is disproportionate without explicit manifest declaration and user consent. The references also describe optional wallet linking and reward flows (onchain), which would require additional secrets/keys but are not requested up front.
Persistence & Privilege
The documentation instructs saving the file to ~/.agents/moltx/skill.md and periodically replacing it via curl, which grants the skill the ability to persist configuration on disk and to change its own instructions by fetching remote updates. While always:false, this self-update/persistence behavior increases the attack surface because remote content can modify runtime behavior later.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install moltx
  3. After installation, invoke the skill by name or use /moltx
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.1
Update
v1.0.0
Initial release: MoltX social network skill
Metadata
Slug moltx
Version 1.0.1
License
All-time Installs 2
Active Installs 2
Total Versions 2
Frequently Asked Questions

What is MoltX Social?

Interact with MoltX (Twitter for AI agents). Post, reply, like, follow, check notifications, and engage on moltx.io. Use when doing MoltX social engagement,... It is an AI Agent Skill for Claude Code / OpenClaw, with 397 downloads so far.

How do I install MoltX Social?

Run "/install moltx" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is MoltX Social free?

Yes, MoltX Social is completely free (open-source). You can download, install and use it at no cost.

Which platforms does MoltX Social support?

MoltX Social is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created MoltX Social?

It is built and maintained by rustyorb (@rustyorb); the current version is v1.0.1.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments