← Back to Skills Marketplace
Bird X CLI
by
bowen31337
· GitHub ↗
· v1.0.0
· MIT-0
106
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install bird-x-cli
Description
Command-line tool for reading, searching, and posting Twitter content using bird/birdc with multiple authentication options.
README (SKILL.md)
bird
Use bird to read/search X and post tweets/replies.
Quick start
bird whoamibird read \x3Curl-or-id>bird thread \x3Curl-or-id>bird search "query" -n 5
Posting (confirm with user first)
bird tweet "text"bird reply \x3Cid-or-url> "text"
Auth sources
- Browser cookies (default: Firefox/Chrome)
- Sweetistics API: set
SWEETISTICS_API_KEYor use--engine sweetistics - Check sources:
bird check
Usage Guidance
This skill is ambiguous and has incomplete provenance. Before installing: 1) Verify which 'bird' binary it expects — there are multiple unrelated 'bird' projects (a Twitter client vs the BIRD BGP daemon). Installing a similarly named but unintended binary could be dangerous. 2) Prefer a known upstream/homepage or source code; ask the author for the project's URL or a verified release. 3) Understand authentication: the skill may access your browser cookie store (sensitive) or accept SWEETISTICS_API_KEY; confirm whether the agent or the CLI accesses cookies and which file paths are used. 4) If you must use it, obtain the 'bird' CLI from a trusted source and run it in a sandbox first. 5) If you do not want any tool reading browser cookies, do not install this skill until its cookie-access behavior is clarified. Additional info that would raise confidence to 'benign': a clear upstream repo/homepage, documentation showing which 'bird' client is required, and an explicit declaration of optional env vars (e.g., SWEETISTICS_API_KEY) and any file paths accessed.
Capability Analysis
Type: OpenClaw Skill
Name: bird-x-cli
Version: 1.0.0
This skill exhibits a major discrepancy between its metadata (which claims it is a CLI for the BIRD Internet Routing Daemon) and its functional instructions (which describe a Twitter/X client). It explicitly directs the agent to use browser cookies from Firefox and Chrome for authentication, which is a high-risk behavior associated with credential theft. The use of the command name 'bird', which shadows a legitimate networking utility, combined with the request for sensitive browser data and an unknown 'Sweetistics' API, suggests deceptive intent or a highly irregular configuration (SKILL.md, README.md).
Capability Tags
Capability Assessment
Purpose & Capability
The skill description says it's a CLI for reading/posting on X, which is reasonable. However the SKILL.md metadata requires anyBins: ["bird", "birdc"] and gives the reason "Bird routing daemon CLI — only useful when bird/birdc is installed". 'birdc' is commonly the control client for the BIRD BGP daemon (unrelated to Twitter), so this looks like a naming/provenance mix-up. The source/homepage are unknown, increasing the risk that the declared binaries don't match the intended Twitter client.
Instruction Scope
Runtime instructions are short and only tell the agent to call the external 'bird' CLI for actions (read/search/post). They do not tell the agent to read arbitrary system files or env vars. However the skill lists 'Browser cookies (default: Firefox/Chrome)' as an auth source — that implies the CLI will access browser cookie stores (sensitive data) even though the skill's runtime instructions do not explicitly state how cookies are obtained or whether the agent itself will access them.
Install Mechanism
No install spec and no code files — instruction-only skill. This has the lowest installation risk because nothing in the skill package will be written or executed on install. The binary 'bird' must already be present on PATH for the skill to work.
Credentials
The metadata declares no required env vars, but SKILL.md documents an optional Sweetistics API via SWEETISTICS_API_KEY (not declared). It also references browser cookie access without declaring which cookie paths or permissions are needed. Missing declaration of optional credentials and unspecified access to browser storage are disproportionate and make it unclear what secrets or files the skill will touch.
Persistence & Privilege
No elevated persistence requested (always: false) and normal autonomous invocation is allowed. The skill does not request system-wide configuration changes or permanent presence.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install bird-x-cli - After installation, invoke the skill by name or use
/bird-x-cli - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release of bird-x-cli.
- Provides a command-line interface for interacting with Bird routing daemon (bird/birdc).
- Supports reading, searching, tweeting, and replying via the bird CLI.
- Requires bird or birdc to be installed.
- Authenticates via browser cookies or the Sweetistics API.
- Includes commands for user checks and managing different authentication sources.
Metadata
Frequently Asked Questions
What is Bird X CLI?
Command-line tool for reading, searching, and posting Twitter content using bird/birdc with multiple authentication options. It is an AI Agent Skill for Claude Code / OpenClaw, with 106 downloads so far.
How do I install Bird X CLI?
Run "/install bird-x-cli" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Bird X CLI free?
Yes, Bird X CLI is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Bird X CLI support?
Bird X CLI is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Bird X CLI?
It is built and maintained by bowen31337 (@bowen31337); the current version is v1.0.0.
More Skills