bird

This skill is functionally coherent with its stated purpose: a CLI that authenticates to X/Twitter using browser cookies or supplied cookie tokens and performs read and write actions. However, the primary security concern stems from the chosen authentication method: reading browser cookie stores and accepting raw cookie tokens is inherently high-risk. That capability is proportionate to the skill's purpose (cookie-based CLI) but requires strong user trust because it exposes sensitive credentials to the CLI. Additional supply-chain considerations: installation via npm and a third-party Homebrew tap requires trusting the maintainer and any prebuilt binaries. There is no direct evidence of malicious code or exfiltration in the provided documentation, but the combination of cookie extraction + state-changing actions and third-party installs elevates the security risk to moderate-high. Treat this skill as potentially dangerous for users who do not fully trust the maintainer; audit the package source code and binaries before use and prefer safer auth flows if available.