Send and search messages across WhatsApp, LinkedIn, Instagram, Discord, Telegram, Signal, Messenger, Slack, and other Beeper-connected networks through the B...
Security Analysis
high confidenceThe skill is coherent with its Beeper messaging purpose, but it grants broad authenticated access to private chats and outbound messaging without enough technical guardrails.
The stated purpose matches the artifacts: it searches, reads, and sends messages through Beeper Desktop using an API key. This is sensitive but not hidden.
The documentation says messages require explicit operator approval, but the send script does not enforce confirmation, preview the resolved recipient, or prevent ambiguous recipient matches before posting.
The package contains a markdown skill and small shell helper scripts only; no installer, dependency download, obfuscation, or automatic execution was found.
The skill reads a local Beeper API key and can access broad cross-platform private message history, send outbound messages, and optionally route authenticated requests over SSH. Those capabilities are high-impact and only partially bounded by documentation.
No persistence mechanism was found, but the raw API command exposes arbitrary authenticated Beeper API paths and methods, which is broader than the safer task-specific helpers.
Guidance
Review carefully before installing. This skill should only be used on a trusted machine with a Beeper account you control, and agents should be allowed to run it only when you are comfortable granting access to private chat history and message sending across connected networks. Avoid BEEPER_SSH_HOST unless you fully trust the remote host, and require manual approval for every send or broad history export.
Latest Release
v1.0.260603
Synced from SuperAda.ai resources
Popular Skills
Published by @h-mascot on ClawHub
