← 返回 Skills 市场
1714
总下载
0
收藏
5
当前安装
2
版本数
在 OpenClaw 中安装
/install x-bookmarks
功能描述
Fetch, summarize, and manage X/Twitter bookmarks via bird CLI or X API v2. Use when: (1) user says "check my bookmarks", "what did I bookmark", "bookmark dig...
安全使用建议
This package appears to do what it says, but take these precautions before installing:
- Source verification: the skill's source/homepage is unknown and the registry metadata contradicts SKILL.md. Only install if you trust the publisher or have reviewed the scripts.
- Prefer OAuth over manual cookie copying: use the provided x_api_auth.py flow (OAuth PKCE) rather than manually extracting/pasting auth_token and ct0 — copying cookies is sensitive and error-prone.
- Review local storage: tokens are written to ~/.config/x-bookmarks/tokens.json (the code sets 0o600). Make sure you’re comfortable storing tokens on this machine and check file ownership/permissions.
- Inspect scripts: the included scripts are small and call only bird or X API endpoints; if unsure, read them yourself or run in an isolated environment (VM/container) first.
- Validate bird-cli source: if you use the bird path, ensure you install bird-cli from its official repo/npm package and understand that it accesses browser cookie stores.
- Cron/automation: scheduled digests imply storing last-processed IDs in workspace/state — confirm where that state will be stored and secure it if it contains tokens or identifiers.
If you want higher assurance, ask the publisher for a verified homepage or run the tools locally (inspect source and run only the Python scripts you reviewed).
功能分析
Type: OpenClaw Skill
Name: x-bookmarks
Version: 1.1.0
The skill is classified as suspicious primarily due to a shell injection vulnerability in `scripts/fetch_bookmarks.sh`. The script directly passes unsanitized arguments (`$@`) to the `bird` command via `exec "${CMD[@]}"`, which could allow an attacker to execute arbitrary commands if user input is not properly sanitized by the OpenClaw agent. Additionally, the `SKILL.md` instructs the AI agent to 'propose actions the agent can execute' based on bookmark content, creating a potential prompt injection vector if the agent's sandboxing or input validation is insufficient. While the skill's stated purpose is legitimate and network calls are confined to X/Twitter APIs, these vulnerabilities pose a significant risk.
能力评估
Purpose & Capability
The skill's name/description (X Bookmarks) aligns with the included scripts and workflows: a bird CLI wrapper, an X API v2 fetcher, and an OAuth helper. However, the registry metadata at the top of the package claims no required env vars, binaries, or config paths while SKILL.md and the scripts explicitly document AUTH_TOKEN/CT0, optional X_API_BEARER_TOKEN, the bird binary, and ~/.config/x-bookmarks/tokens.json — an internal inconsistency the user should be aware of.
Instruction Scope
SKILL.md and the scripts confine actions to fetching bookmarks (via bird or X API), categorizing them, and storing local state/tokens. The OAuth helper runs a local HTTP callback and opens the browser (normal for PKCE). There are no instructions to read unrelated system files or transmit credentials to unexpected third parties; network calls go to X endpoints (api.x.com / x.com) as expected.
Install Mechanism
There is no automated install spec in the package (instruction-only with scripts included), so nothing is automatically downloaded or executed during install. The only external install suggested is installing bird-cli from npm, which is a normal third-party dependency. No unusual download URLs or archive extraction are present.
Credentials
The package reasonably needs authentication credentials to read private bookmarks: either browser cookie values (AUTH_TOKEN and CT0) for bird CLI or OAuth tokens / bearer token for the X API. These credentials are sensitive but proportionate to the stated functionality. Again note the registry metadata incorrectly lists no required env vars while SKILL.md requires them. Tokens are saved locally to ~/.config/x-bookmarks/tokens.json (file is created with mode 0o600 in the code).
Persistence & Privilege
The skill stores its own config and tokens under ~/.config/x-bookmarks and runs a short-lived local HTTP server during OAuth authorization; it does not request persistent platform-wide privileges nor set always:true. Storing tokens locally (with restrictive file perms) is normal for this workflow.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install x-bookmarks - 安装完成后,直接呼叫该 Skill 的名称或使用
/x-bookmarks触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.1.0
Declared credential requirements (AUTH_TOKEN, CT0, X_API_BEARER_TOKEN) and security permissions to resolve suspicious flag. Added requires and security sections to SKILL.md.
v1.0.0
Initial release: action-first bookmark digests, scheduled cron digests, content recycling, pattern detection, bookmark cleanup
元数据
常见问题
X Bookmarks 是什么?
Fetch, summarize, and manage X/Twitter bookmarks via bird CLI or X API v2. Use when: (1) user says "check my bookmarks", "what did I bookmark", "bookmark dig... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 1714 次。
如何安装 X Bookmarks?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install x-bookmarks」即可一键安装,无需额外配置。
X Bookmarks 是免费的吗?
是的,X Bookmarks 完全免费(开源免费),可自由下载、安装和使用。
X Bookmarks 支持哪些平台?
X Bookmarks 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 X Bookmarks?
由 sharbel(@sharbelayy)开发并维护,当前版本 v1.1.0。
推荐 Skills