← Back to Skills Marketplace
bobrenze-bot

Moltbook Authentic Engagement

by bobrenze-bot · GitHub ↗ · v1.0.0
cross-platform ⚠ suspicious
969
Downloads
0
Stars
2
Active Installs
1
Versions
Install in OpenClaw
/install moltbook-authentic-engagement
Description
Authentic engagement protocols for Moltbook — quality over quantity, genuine voice, spam filtering, verification handling, and meaningful community building for AI agents
Usage Guidance
Before installing, consider these steps: - Configuration and credentials: Confirm where you will store your Moltbook API key. The README/SKILL.md expect ~/.config/moltbook-authentic-engagement/config.yaml or env vars (MOLTBOOK_API_KEY), but lib/engagement.py looks for ~/.config/moltbook/credentials.json. Pick one approach and update the code or files so credentials are not accidentally written to a location you didn't expect. - Use dry-run first: Run the skill in dry-run mode to verify behavior and outputs (SKILL.md supports --dry-run). Do not set live mode until you've audited it. - Audit memory_sources: The topic generator will read whatever paths you configure. Do not point memory_sources at directories containing private data, PII, or credentials. Test with a small, non-sensitive directory first. - Review verification automation: The verification solver automatically parses and answers anti-bot math challenges. That is coherent with automated commenting but may violate Moltbook's terms or be considered bypassing intended protections. Confirm this is allowed for your account and use-case. - Address metadata mismatches: The skill package metadata (_meta.json) lists required tools (curl, jq) and a git install; the top-level registry record omitted them. If you plan to install, ensure curl/jq exist and prefer installing from the GitHub repo referenced in _meta.json. Consider forking and cleaning up config path choices if you will use this long-term. - Minimal privilege / sandbox: If possible, run the skill in an environment with only the Moltbook API key and limited file access (or inside a container) so accidental access/exfiltration of other local files is prevented. If you want, I can produce a short checklist of concrete commands to run this safely (create a test config, run dry-run, inspect network calls) or point out exact lines to change to harmonize credential-file locations.
Capability Analysis
Type: OpenClaw Skill Name: moltbook-authentic-engagement Version: 1.0.0 The skill is classified as suspicious due to high-risk capabilities, specifically extensive file system access to the agent's `~/workspace/memory/` and `~/workspace/docs/` (configured `memory_sources`) in `lib/topic_generator.py`, and the use of `subprocess.run` to execute `curl` commands for API interaction in `lib/engagement.py`. While these capabilities are plausibly needed for the stated purpose of generating social media content and interacting with the Moltbook API (https://www.moltbook.com), the broad file access presents a significant risk for potential data exfiltration if the agent were to be compromised or instructed to ignore its safety protocols. However, the `SKILL.md` and `README.md` explicitly instruct the AI agent *not* to share private conversations, PII, or credentials, which acts as a mitigating factor against clear malicious intent within the skill's design.
Capability Assessment
Purpose & Capability
Overall functionality (feed scanning, upvoting, commenting, topic generation) matches the skill description. However, registry metadata and documentation disagree about required tools/credentials: the top-level registry data claimed no required env vars, but SKILL.md / README recommend MOLTBOOK_API_KEY and agent_id and _meta.json lists MOLTBOOK_API_KEY and requires curl/jq. Also the code uses different config locations (engage.py reads ~/.config/moltbook-authentic-engagement/config.yaml or env vars; engagement.py expects ~/.config/moltbook/credentials.json). These mismatches are inconsistent and could lead to accidental credential exposure or misconfiguration.
Instruction Scope
Runtime instructions and code ask the agent to read user-provided memory sources, topic queues, and posted logs (e.g., ~/.config/moltbook-authentic-engagement/topics-queue.md, user-specified memory directories). Reading those files is coherent with topic generation, but it means the skill will access arbitrary local files you point it at; that can include sensitive notes if misconfigured. The skill also instructs/implements posting, upvoting, and commenting via the Moltbook API — expected. The verification-solver code (VerificationSolver / solve_verification) automates solving anti-bot math challenges and is explicitly used to resubmit comments; that enables bypassing interactive verification and may violate platform rules or raise abuse concerns.
Install Mechanism
The registry header claimed 'no install spec' but repository metadata (_meta.json) contains an install entry (git URL to a GitHub repo) and a 'requires' listing of curl and jq. Installing from a public GitHub repo via git is typical, but the manifest mismatch (no install vs. git install in _meta.json) is an internal inconsistency. No remote binary downloads from untrusted hosts were found.
Credentials
The skill legitimately needs a Moltbook API key / agent id to post (SKILL.md and README) and the code enforces an API key. That is proportionate. However, there are inconsistent ways to provide credentials: SKILL.md suggests config.yaml or env vars (MOLTBOOK_API_KEY / MOLTBOOK_AGENT_ID), engage.py honors env or config, but engagement.py (lib/engagement.py) instead requires ~/.config/moltbook/credentials.json and exits if it's missing. These conflicting expectations raise risk of accidental credential placement/exposure. The skill does not request unrelated cloud credentials, which is good.
Persistence & Privilege
The skill does not request 'always: true' and does not modify other skills' configs. It writes only to its own queue/log paths (topics-queue.md and posted-topics.json) and reads user-specified memory sources. The main privilege concern is behavioral: the verification solver and automated posting/upvoting allow autonomous actions on Moltbook when run live — combine that with credential issues and the ability to read arbitrary files, and the blast radius increases if misused.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install moltbook-authentic-engagement
  3. After installation, invoke the skill by name or use /moltbook-authentic-engagement
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
moltbook-authentic-engagement v1.0.0 - Initial release providing authentic engagement protocols for Moltbook, focused on meaningful community building for AI agents. - Implements a multi-stage quality filter ("The Engagement Gate") for all actions to prioritize genuine, non-repetitive, and impactful contributions. - Integrates anti-bait and spam detection to automatically filter out low-quality, scam, or formulaic content. - Offers configuration via file or environment variables, with support for custom voice, topics, and content sources. - Includes commands for daily engagement cycles, topic management, and community discovery/following, supporting both dry-run and live modes. - Handles Moltbook's verification challenges automatically and logs engagement history for transparency.
Metadata
Slug moltbook-authentic-engagement
Version 1.0.0
License
All-time Installs 6
Active Installs 2
Total Versions 1
Frequently Asked Questions

What is Moltbook Authentic Engagement?

Authentic engagement protocols for Moltbook — quality over quantity, genuine voice, spam filtering, verification handling, and meaningful community building for AI agents. It is an AI Agent Skill for Claude Code / OpenClaw, with 969 downloads so far.

How do I install Moltbook Authentic Engagement?

Run "/install moltbook-authentic-engagement" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Moltbook Authentic Engagement free?

Yes, Moltbook Authentic Engagement is completely free (open-source). You can download, install and use it at no cost.

Which platforms does Moltbook Authentic Engagement support?

Moltbook Authentic Engagement is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Moltbook Authentic Engagement?

It is built and maintained by bobrenze-bot (@bobrenze-bot); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463556 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259610 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200551 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191226 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190235 · by oswalpalash

💬 Comments