← 返回 Skills 市场
352
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install tweet-monitor-pro
功能描述
Fetch X/Twitter tweets, replies, and timelines without login or API keys. Also supports Chinese platforms (Weibo, Bilibili, CSDN, WeChat).
安全使用建议
Do not install or enable this skill blindly. Before using: 1) Ask the author for the repository and full source of the referenced x-tweet-fetcher and fetch_tweet.py; inspect that Python script for malicious behavior and network endpoints. 2) Verify why the skill calls /root/.openclaw/workspace/... — running scripts from /root is unusual; confirm intended install location and run as non-root in a sandbox first. 3) Have the maintainer remove shell-join exec usage or confirm proper input sanitization; current execSync(args.join(' ')) can be exploited via crafted URLs/usernames. 4) If you plan to enable billing, only set SKILLPAY_API_KEY/SKILLPAY_SKILL_ID after verifying server-side billing endpoints and code path that uses them. 5) If unsure, run the skill in an isolated environment, or request a version that bundles/declares its dependencies (or uses execFile/spawn with sanitized args) and documents required binaries and config paths. These steps will reduce the risk of accidental command execution, credential leakage, or unexpected filesystem access.
功能分析
Type: OpenClaw Skill
Name: tweet-monitor-pro
Version: 1.0.0
The skill contains a critical command injection vulnerability in index.js, where user-provided parameters (url, username, baselineFile) are passed unsanitized to execSync via string concatenation. It also relies on a hardcoded absolute path to a script located in /root/.openclaw/workspace/skills/x-tweet-fetcher/scripts/fetch_tweet.py, which is not included in the bundle and suggests irregular environment dependencies. While the skill claims to have a commercial subscription model, the upgrade logic is purely local and lacks actual payment verification, which is misleading but not definitively malicious.
能力评估
Purpose & Capability
The README/SKILL.md promise 'zero-dependency' single-tweet fetches, yet index.js calls a Python script at a hard-coded path (/root/.openclaw/workspace/skills/x-tweet-fetcher/scripts/fetch_tweet.py) and requires python3 to be present. That external dependency is not declared anywhere in the manifest or SKILL.md (the docs mention Camofox but not x-tweet-fetcher). The hard-coded /root path and implicit dependency on another skill/tool contradict the stated 'no dependencies' claim.
Instruction Scope
SKILL.md does not describe the code's runtime behavior in detail: index.js uses child_process.execSync to run external scripts and reads/writes a quota DB (quotas.json or path set by QUOTA_DB env var). execSync is invoked via building a single shell string (args.join(' ')), which makes the skill vulnerable to shell injection if inputs (url, username, baselineFile) are not sanitized. The code also assumes access to filesystem paths under /root, which is outside the skill's own directory and not mentioned in SKILL.md.
Install Mechanism
There is no install spec (instruction-only with an included index.js). That's lower risk in principle, but the code depends on an external Python script from a different skill path. SKILL.md suggests installing Camofox (via a GitHub repo) for advanced features, but does not instruct installing or verifying the x-tweet-fetcher Python script that index.js actually executes. The missing install/ownership information for that external script is a red flag.
Credentials
manifest and metadata claim no required env vars, but index.js reads process.env.QUOTA_DB (optional) and SKILL.md/README reference SkillPay env vars (SKILLPAY_API_KEY, SKILLPAY_SKILL_ID) for billing integration. Those env vars are not declared in requires.env, and the code does not implement SkillPay logic — this mismatch is suspicious. Also the code implicitly requires python3 and write permission to its quota DB path (possibly under /root).
Persistence & Privilege
The skill is not 'always: true' and is user-invocable (normal). It writes a quota DB (quotas.json) in its directory by default or to QUOTA_DB if set — that is reasonable for quota tracking. However, it assumes filesystem access to /root/.openclaw/workspace/... to run the external script, which implies elevated or cross-skill access assumptions; this should be verified before install.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install tweet-monitor-pro - 安装完成后,直接呼叫该 Skill 的名称或使用
/tweet-monitor-pro触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release: Fetch X/Twitter tweets without API. Free tier 10 calls, Pro .9/mo (1000 calls), Business .9/mo (unlimited).
元数据
常见问题
Tweet Monitor Pro 是什么?
Fetch X/Twitter tweets, replies, and timelines without login or API keys. Also supports Chinese platforms (Weibo, Bilibili, CSDN, WeChat). 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 352 次。
如何安装 Tweet Monitor Pro?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install tweet-monitor-pro」即可一键安装,无需额外配置。
Tweet Monitor Pro 是免费的吗?
是的,Tweet Monitor Pro 完全免费(开源免费),可自由下载、安装和使用。
Tweet Monitor Pro 支持哪些平台?
Tweet Monitor Pro 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Tweet Monitor Pro?
由 hejiubot(@hejiubot)开发并维护,当前版本 v1.0.0。
推荐 Skills