multi-post Security Report — Trusted | ClawSafe

0 /100

multi-post

Multi-platform content publisher via browser automation for Weibo, Xiaohongshu, Zhihu, Twitter/X, Reddit, V2EX, Douban, and LinkedIn

Pure documentation skill with no executable code. All capabilities are browser-based and fully declared in SKILL.md. No security concerns identified.

Skill Namemulti-post

Duration24.8s

Enginepi

✓

Safe to install

This skill is safe to use. It only uses the declared browser tool with profile='user' for social media posting.

Resource	Declared	Inferred	Status	Evidence
Filesystem	`NONE`	`NONE`	—
Network	`NONE`	`NONE`	—
Shell	`NONE`	`NONE`	—
Environment	`NONE`	`NONE`	—
Skill Invoke	`NONE`	`NONE`	—
Clipboard	`NONE`	`NONE`	—
Browser	`READ`	`READ`	✓ Aligned	SKILL.md declares browser tool usage with profile='user'
Database	`NONE`	`NONE`	—

10 findings

🔗

Medium External URL 外部 URL

https://weibo.com

references/platform-flows.md:17

🔗

Medium External URL 外部 URL

https://weibo.com/

references/platform-flows.md:29

🔗

Medium External URL 外部 URL

https://creator.xiaohongshu.com/publish/publish

references/platform-flows.md:38

🔗

Medium External URL 外部 URL

https://www.zhihu.com

references/platform-flows.md:60

🔗

Medium External URL 外部 URL

https://zhuanlan.zhihu.com/write

references/platform-flows.md:71

🔗

Medium External URL 外部 URL

https://x.com/compose/post

references/platform-flows.md:81

🔗

Medium External URL 外部 URL

https://www.reddit.com/r/

references/platform-flows.md:103

🔗

Medium External URL 外部 URL

https://v2ex.com/new

references/platform-flows.md:121

🔗

Medium External URL 外部 URL

https://www.linkedin.com/feed/

references/platform-flows.md:137

🔗

Medium External URL 外部 URL

https://www.douban.com/

references/platform-flows.md:151

File Tree

3 files · 10.2 KB · 305 lines

Markdown 3f · 305L

├─ ▾ 📁 references

│ ├─ 📝 platform-flows.md Markdown 169L · 4.9 KB

│ └─ 📝 platform-rules.md Markdown 64L · 2.5 KB

└─ 📝 SKILL.md Markdown 72L · 2.8 KB

Security Positives

✓ No executable code - purely documentation with reference files

✓ All capabilities declared: only uses browser tool with profile='user'

✓ No shell, filesystem, or network access requested

✓ No credential harvesting - relies on user's existing browser sessions

✓ No data exfiltration - only posts content to platforms user specifies

✓ Clear error handling documented (CAPTCHA, rate limiting, login checks)

✓ No obfuscation, encoding, or suspicious patterns detected

✓ Skill is scoped to social media posting only

Scan Report

File Tree

Security Positives