Research and summarize what happened in the last N days (or a date range) about a topic, optionally using Reddit API and X ingestion via x-cli/API/archive wi...
Security Analysis
medium confidenceThe skill's functionality (summarize recent events) matches its description, but the runtime instructions reference helper scripts and local credential/config paths that are not bundled and would require the agent to read files or rely on external tooling — an incoherence that could expose sensitive data or simply fail at runtime.
The name/description (summarize last N days about a topic) aligns with the instructions (web search + optional Reddit/X ingestion). However the SKILL.md repeatedly instructs running local node scripts (scripts/lastxdays_ingest.js, scripts/lastxdays_range.js) and using x-cli/local archives without those scripts or binaries being provided. That mismatch (an instruction-only skill that expects non-shipped helper scripts) is an ownership/coherence problem: either the skill should include the scripts or make clear they are optional/external.
Instructions explicitly tell the agent to read local credential/config files (~/.config/last30days/.env, ~/.config/x-cli/.env) and to examine a local archive path (~/clawd/data/x-archive/). They also tell the agent to run node scripts and x-cli if present. Reading those files and archives is sensitive and goes beyond pure web searching; the skill's metadata declared no required config paths, so the SKILL.md is instructing access to user-local files that were not declared up-front.
There is no install spec (instruction-only), so nothing will be written to disk by an installer. However the SKILL.md expects external tools (node, x-cli, optional uv tool install) and non-packaged scripts. That increases runtime fragility and the potential for the agent to attempt remote installs or to ask the user to install tools — behavior users should be aware of.
The SKILL.md describes optional but sensitive environment variables for Reddit (client id/secret, refresh token or username/password) and X (bearer token). Requesting such credentials is proportionate if the user explicitly chooses Reddit/X ingestion, but the skill also instructs reading ~/.config/last30days/.env and other local credential files which were not declared in the skill metadata. That implicit file access and the inclusion of username/password as an allowed credential is a privacy risk that should be justified explicitly before providing secrets.
always:false and no install spec mean the skill does not force permanent presence or system-wide changes. It also does not claim to modify other skills. Still, runtime behavior may read local config/archives and attempt to invoke external CLIs (x-cli) or node scripts — so while it does not request elevated installation privileges, it does request potentially sensitive local reads at runtime.
Guidance
Before installing or invoking this skill: (1) be aware it expects helper node scripts (scripts/lastxdays_ingest.js, lastxdays_range.js) and CLI tooling (node, x-cli) that are NOT included — ask the skill author to provide those scripts or confirm they are optional. (2) The skill may read local files (~/.config/last30days/.env, ~/.config/x-cli/.env) and a local X archive (~/clawd/data/x-archive/); do not expose credentials or sensitive files unless you trust the skill and have reviewed the code that will use them. (3) If you want Reddit/X ingestion, prefer scoped read-only tokens (OAuth refresh tokens or API tokens) rather than username/password in environment variables. (4) If you are uncomfortable granting local-file access or secrets, use this skill in web-only mode or ask for an explicit, minimal list of required credentials and for the missing scripts to be bundled. (5) Consider running the skill in a sandboxed environment or requesting the author to include and review the helper scripts before granting access.
Latest Release
v1.0.2
Fix model guidance: sonnet default, flash only for simple single-source runs
More by @levineam
Published by @levineam on ClawHub
