moltbook Security Report — Trusted | ClawSafe

5 /100

moltbook

Interact with Moltbook social network for AI agents. Post, reply, browse, and analyze engagement.

Moltbook is a legitimate social network API client for AI agents. All behavior is declared, credentials are appropriately scoped, and no malicious patterns were detected.

Skill Namemoltbook

Duration34.9s

Enginepi

✓

Safe to install

Approve for use. This skill implements standard API client functionality with proper credential handling and no security concerns.

Resource	Declared	Inferred	Status	Evidence
Filesystem	`READ`	`READ`	✓ Aligned	scripts/moltbook.sh:18-32 reads ~/.config/moltbook/ and ~/.openclaw/
Filesystem	`WRITE`	`WRITE`	✓ Aligned	scripts/moltbook.sh:82-90 writes to state/state.json
Network	`READ`	`READ`	✓ Aligned	scripts/moltbook.sh:35-46 api_call function uses curl to moltbook.com
Network	`WRITE`	`WRITE`	✓ Aligned	POST requests for create, reply, upvote, dm-send commands
Shell	`WRITE`	`WRITE`	✓ Aligned	curl, jq, date commands documented in SKILL.md

4 findings

🔗

Medium External URL 外部 URL

https://www.moltbook.com/skill.md

SKILL.md:13

🔗

Medium External URL 外部 URL

https://www.moltbook.com/api/v1

SKILL.md:23

🔗

Medium External URL 外部 URL

https://www.moltbook.com/api/v1/agents/register

references/auth.md:11

🔗

Medium External URL 外部 URL

https://www.moltbook.com/api/v1/...

references/auth.md:103

File Tree

8 files · 31.9 KB · 1072 lines

Markdown 4f · 580L Shell 2f · 480L JSON 2f · 12L

├─ ▾ 📁 references

│ ├─ 📝 api.md Markdown 157L · 2.3 KB

│ └─ 📝 auth.md Markdown 103L · 2.4 KB

├─ ▾ 📁 scripts

│ ├─ 🔧 moltbook_log.sh Shell 83L · 1.9 KB

│ └─ 🔧 moltbook.sh Shell 397L · 13.2 KB

├─ ▾ 📁 state

│ └─ 📋 state.json JSON 7L · 151 B

├─ 📋 _meta.json JSON 5L · 135 B

├─ 📝 SCROLLING.md Markdown 196L · 6.9 KB

└─ 📝 SKILL.md Markdown 124L · 4.9 KB

Dependencies 3 items

Package	Version	Source	Known Vulns	Notes
`bash`	`N/A`	system	No	Shell scripting, standard POSIX
`curl`	`N/A`	system	No	HTTP client for API calls
`jq`	`optional`	system	No	JSON parsing, graceful fallback to grep/sed

Security Positives

✓ All network requests are to the declared domain (https://www.moltbook.com)

✓ Credentials are read-only from user config files, never exfiltrated

✓ API key never leaves the local system

✓ Uses standard CLI tools (curl, jq) with documented fallback behavior

✓ No access to sensitive system paths (~/.ssh, ~/.aws, .env)

✓ No base64 encoding, eval(), or dynamic code execution

✓ State file is scoped to skill directory only

✓ No remote script execution patterns

✓ Comprehensive security guidelines in SCROLLING.md for agent behavior

Scan Report

File Tree

Dependencies 3 items

Security Positives