← Back to Skills Marketplace
624
Downloads
0
Stars
2
Active Installs
2
Versions
Install in OpenClaw
/install x-news-crawler
Description
Crawl X (Twitter) search results through a local CLI that wraps `abs` (agent-browser). Use when the user asks to scrape X posts by keyword, collect Top/Lates...
Usage Guidance
Before installing or running this skill: 1) Understand that the instructions ask you to run Chrome with remote debugging on your regular profile—this can expose your logged-in sessions/cookies to the crawler. Prefer running Chrome with an isolated/test profile unless you explicitly need access to your account. 2) The SKILL.md asks you to run 'pnpm approve-builds -g' and install a global package; review the 'agent-browser-stealth' package source and trustworthiness before approving or installing globally. 3) Note the manifest metadata omits required binaries (scripts require 'abs', 'jq', 'python3'); confirm you trust and control the 'abs' binary being invoked. 4) If you must proceed, run the tool in a controlled environment (throwaway VM/container or isolated browser profile), audit network activity, and avoid exposing sensitive accounts. 5) If you want to be extra safe, ask the author for a signed/verified release of the agent-browser wrapper and for a justification why a regular profile is required and why global pnpm approval is necessary.
Capability Analysis
Type: OpenClaw Skill
Name: x-news-crawler
Version: 0.1.1
The skill requires the user to expose their primary Chrome browser profile via the Remote Debugging Port (CDP) and explicitly advises against using an isolated data directory (`--user-data-dir`) in SKILL.md and references/cli.md. This configuration grants the crawler script (scripts/x_news_crawler.sh) and the required 'agent-browser-stealth' package full control over the user's active browser sessions, cookies, and stored credentials. While this is likely intended to bypass X's anti-bot protections by using a logged-in session, it creates a high-risk environment for session hijacking. Additionally, the setup instructions mandate global package installation and bypassing build security prompts ('pnpm approve-builds -g').
Capability Assessment
Purpose & Capability
The skill's stated purpose (crawl X search results) matches the included scripts that wrap 'abs' and produce JSON. However the registry metadata claims no required binaries/env vars, while scripts explicitly require 'abs', 'jq', and 'python3' (inconsistency). The SKILL.md also instructs global pnpm installs and global 'approve-builds', which is broader than what the metadata declares and is disproportionate to a simple scraper.
Instruction Scope
Runtime instructions require launching Chrome with --remote-debugging-port using the user's regular profile and explicitly say 'Do not use --user-data-dir'. That directs the crawler to reuse your normal browser profile (cookies, logged-in sessions). This materially expands the scope beyond public page scraping and has privacy/security implications that are not called out in metadata or guarded in the docs.
Install Mechanism
There is no formal install spec in registry metadata, but SKILL.md instructs 'pnpm add -g agent-browser-stealth' and 'pnpm approve-builds -g'. Global package installs and approving builds globally are higher-risk actions because they affect the system and relax package protections. The SKILL.md install actions are not tied to a verified release URL or fingerprint in the manifest.
Credentials
The skill declares no required environment variables, but uses and suggests AGENT_BROWSER_DEFAULT_TIMEOUT and an optional X_NEWS_FORCE_FAIL_SOURCE test variable. More importantly, the instruction to use a regular Chrome profile implicitly requires access to browser session cookies and authenticated sessions—this is a sensitive form of credential/access that is not declared or justified in the registry metadata.
Persistence & Privilege
The skill does not request 'always: true' and does not appear to modify other skills or system-wide agent settings. The primary risk is temporary access to a running Chrome CDP endpoint tied to the regular profile, not persistent elevated privileges. The global pnpm approval/install are system-wide actions, however, and deserve caution.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install x-news-crawler - After installation, invoke the skill by name or use
/x-news-crawler - Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.1.1
Update docs and remove session-based usage
v0.1.0
Initial release
Metadata
Frequently Asked Questions
What is X News Crawler?
Crawl X (Twitter) search results through a local CLI that wraps `abs` (agent-browser). Use when the user asks to scrape X posts by keyword, collect Top/Lates... It is an AI Agent Skill for Claude Code / OpenClaw, with 624 downloads so far.
How do I install X News Crawler?
Run "/install x-news-crawler" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is X News Crawler free?
Yes, X News Crawler is completely free (open-source). You can download, install and use it at no cost.
Which platforms does X News Crawler support?
X News Crawler is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created X News Crawler?
It is built and maintained by 郭立lee (@leeguooooo); the current version is v0.1.1.
More Skills