← Back to Skills Marketplace
2157
Downloads
0
Stars
6
Active Installs
1
Versions
Install in OpenClaw
/install solobuddy
Description
Build-in-public companion for indie hackers — content workflow, Twitter engagement, project soul creation. A living assistant, not a tool.
Usage Guidance
What to watch for before installing/using SoloBuddy:
- Core content features (backlog, drafts, generation) are coherent and operate only in a user-configured folder (dataPath). Those parts are low-risk if you point dataPath to a directory you control.
- The optional Twitter Monitor is the biggest red flag: it instructs creating scripts in ~/.clawdbot/scripts, placing a LaunchAgent in ~/Library/LaunchAgents, writing logs to /tmp, and using the 'bird' CLI plus Twitter auth tokens (AUTH_TOKEN, CT0). If you enable this, inspect every script and the plist before running them. Prefer not to store secrets in plain ~/.zshrc; use a more secure credential store where possible.
- The skill lists 'gh' as required but examples use git; verify whether you need to install 'gh' for any feature you plan to use. Don't blindly run install or bootstrap commands — inspect them.
- The skill will read files under the configured dataPath and (for the Soul Wizard) will run a find on the project path you provide. Only point it at repositories you want it to analyze, not at your entire home directory.
- If you plan to use Telegram/Clawdbot integration or automatic notifications, confirm how messages are delivered (clawdbot CLI) and what data is sent externally.
Recommendation: treat the content-generation features as generally safe to try in a sandboxed project folder. If you want Twitter monitoring, review and audit the monitor scripts and the LaunchAgent plist, avoid storing tokens in shell rc files, and only enable background agents if you accept the ongoing activity and have inspected the code.
Capability Analysis
Type: OpenClaw Skill
Name: solobuddy
Version: 1.0.0
The skill is classified as suspicious due to several high-risk capabilities, even though direct malicious intent is not explicitly evident in the provided files. Key indicators include the use of a `LaunchAgent` for persistence (`modules/twitter-monitor.md`), broad file system access via `find` for scanning project documentation (`references/soul-wizard.md`), and reliance on powerful CLIs like `gh` (GitHub CLI) and `bird` (Twitter CLI). While these capabilities are plausibly related to the stated purpose of a 'build-in-public companion,' they significantly expand the attack surface. Furthermore, the `twitter-monitor.sh` and `twitter-analyze.sh` scripts, which are central to the monitoring functionality and executed by the `LaunchAgent`, are referenced but not provided for analysis within the bundle, preventing full verification of their benign nature.
Capability Assessment
Purpose & Capability
The skill's stated purpose (build‑in‑public content workflows, Twitter engagement, project 'soul' creation) matches most instructions (reading/writing files in a configured project folder, generating posts, voice profiles, scanning README/.md files). Minor mismatch: metadata and README declare 'gh' (GitHub CLI) as required, but the runtime examples use plain git commands and the SKILL.md doesn't actually call 'gh'. 'bird' (Twitter CLI) is optional and only referenced by the monitor module — acceptable but worth noting.
Instruction Scope
Core content workflows operate on user-chosen dataPath (reading/writing backlog, drafts, session logs) which is appropriate. However the Twitter Monitor module instructs creating scripts under ~/.clawdbot/scripts and a LaunchAgent in ~/Library/LaunchAgents to run periodically, logs to /tmp, and uses the 'bird' CLI to fetch tweets. It also shows storing Twitter tokens (AUTH_TOKEN, CT0) in ~/.zshrc. Installing background agents and asking the agent to run system-level scheduling is scope expansion beyond a passive content assistant and should be reviewed by the user before enabling.
Install Mechanism
This is an instruction-only skill with no install spec and no bundled code — lowest install risk. The README suggests installing via 'npx clawdhub@latest install solobuddy' (user-run), but the skill itself does not automatically download or extract code. Risk comes from follow-up instructions that ask users to create scripts/LaunchAgents on their system if they enable the optional monitor.
Credentials
The skill declares no required environment variables or credentials, which fits most of its functionality. The optional Twitter monitor, however, implies use of Twitter auth tokens (AUTH_TOKEN, CT0) stored in ~/.zshrc and the bird CLI — these are proportional to monitoring Twitter but are sensitive and the guidance suggests storing them in shell rc files (not best practice). No other unrelated credentials are requested.
Persistence & Privilege
always:false and no explicit persistent install are fine. But the documentation and modules explicitly instruct creating persistent background scripts and a LaunchAgent to run the twitter-monitor on an interval. That grants ongoing background activity and file writes under user home and /tmp when the optional module is enabled — a higher persistence/privilege level than passive assistants and therefore requires explicit user review.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install solobuddy - After installation, invoke the skill by name or use
/solobuddy - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release of SoloBuddy — your build-in-public companion for indie hackers.
- Provides a living content workflow assistant for backlog management, drafting, and publishing.
- Twitter integration: expert content strategy and optional Twitter engagement monitoring.
- Soul Wizard: create and manage project personalities from documentation.
- Telegram integration with interactive command buttons.
- Customizable voice profiles; match user language (English/Russian).
- Activity tracking for strategic insights and nudges.
Metadata
Frequently Asked Questions
What is SoloBuddy?
Build-in-public companion for indie hackers — content workflow, Twitter engagement, project soul creation. A living assistant, not a tool. It is an AI Agent Skill for Claude Code / OpenClaw, with 2157 downloads so far.
How do I install SoloBuddy?
Run "/install solobuddy" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is SoloBuddy free?
Yes, SoloBuddy is completely free (open-source). You can download, install and use it at no cost.
Which platforms does SoloBuddy support?
SoloBuddy is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created SoloBuddy?
It is built and maintained by Humanji7 (@humanji7); the current version is v1.0.0.
More Skills