Security audit
AIsa Twitter Research Engage Relay
Security checks across malware telemetry and agentic risk
Overview
This appears to be what it claims: a Twitter/X relay skill that uses an AIsa API key, though installing it means trusting AIsa with Twitter engagement, posting, and any attached media you send.
Install this only if you trust AIsa and this publisher to mediate real Twitter/X actions on your behalf. The skill can send your AISA_API_KEY, post text, perform engagement actions, and upload user-attached media files to api.aisa.one. Also be aware that some supplied Python files were truncated in the provided artifact, so a full source review would be needed for higher confidence.
VirusTotal
No VirusTotal findings
Static analysis
No suspicious patterns detected.
