# tweetclaw > Post tweets, reply, like, retweet, follow, DM & more from OpenClaw. Full X/Twitter automation via Xquik — 121 endpoints, reads from $0.00015/call (33x cheaper than official X API). 2 tools, 2 commands - **URL**: https://www.freshcrate.ai/projects/tweetclaw - **Author**: Xquik-dev - **Category**: MCP Servers - **Latest version**: `v1.6.31` (2026-05-14) - **License**: MIT - **Source**: https://github.com/Xquik-dev/tweetclaw - **Homepage**: https://xquik.com - **Language**: TypeScript - **GitHub**: 32 stars, 2 forks - **Registry**: github - **Tags**: `ai-agent`, `automation`, `cheap-api`, `data-extraction`, `giveaway`, `mcp`, `mcp-server`, `openclaw`, `typescript` ## Description Post tweets, reply, like, retweet, follow, DM & more from OpenClaw. Full X/Twitter automation via Xquik — 121 endpoints, reads from $0.00015/call (33x cheaper than official X API). 2 tools, 2 commands, background event poller. ## Recent releases | Version | Date | Urgency | Changes | | --- | --- | --- | --- | | `v1.6.31` | 2026-05-14 | High | ## Install metadata - Published npm package @xquik/tweetclaw@1.6.31. - Set OpenClaw install metadata to prefer npm as the canonical source while ClawHub owner migration blocks current package publishing. - Removed the current ClawHub spec from package metadata so installers do not target an unpublished ClawHub version. - Kept the ClawHub discovery page linked for browsing only. ## Validation - npm run check:all - npm pack --dry-run --json - npm view @xquik/tweetclaw version dist-tags.latest o | | `v1.6.29` | 2026-05-13 | High | **Full Changelog**: https://github.com/Xquik-dev/tweetclaw/compare/v1.6.28...v1.6.29 **Full Changelog**: https://github.com/Xquik-dev/tweetclaw/compare/v1.6.28...v1.6.29 | | `v1.6.27` | 2026-05-08 | High | **Full Changelog**: https://github.com/Xquik-dev/tweetclaw/compare/v1.6.15...v1.6.27 | | `v1.6.12` | 2026-05-06 | High | **Full Changelog**: https://github.com/Xquik-dev/tweetclaw/compare/v1.6.5...v1.6.12 | | `v1.6.4` | 2026-04-30 | High | **Full Changelog**: https://github.com/Xquik-dev/tweetclaw/compare/v1.6.3...v1.6.4 | | `v1.6.3` | 2026-04-25 | High | Published @xquik/tweetclaw@1.6.3 to npm. Refresh follower changes copy, fix api-spec endpoints free flip. | | `v1.6.1` | 2026-04-22 | High | Framework cross-link bump (follow-up to #1998). All version surfaces now aligned: package.json, server.json, openclaw.plugin.json, package-lock.json. Published to npm as @xquik/tweetclaw@1.6.1. | | `v1.5.4` | 2026-04-14 | High | ## Security Hardening Addresses findings from Gen Agent Trust Hub and Socket/Snyk security audits. ### CREDENTIALS_UNSAFE — Fixed - **Agent-prohibited endpoints**: `POST /api/v1/x/accounts` and `POST /api/v1/x/accounts/:id/reauth` are now blocked at two levels: - Filtered from the `explore` tool's endpoint catalog (agent cannot discover them) - Rejected at the request proxy level (agent cannot call them even with crafted paths) - Account connection and re-authentication must be done throug | | `v1.5.1` | 2026-04-06 | High | ## What's Changed - **Security**: Harden credential handling, fix prompt injection vectors, remove third-party names from output - **Dependencies**: Patch 4 dependency vulnerabilities (picomatch, brace-expansion, smol-toml, yaml) - **Pricing**: Align extraction and MPP pricing with billing source of truth; correct endpoint count and credit costs | | `v1.5.0` | 2026-03-30 | Medium | ## Changes - Sandbox tool execution with `vm.runInNewContext` + Proxy isolation - Renamed `tempoPrivateKey` to `tempoSigningKey` across all user-facing text - Added required OpenClaw compat and build metadata for ClawHub publishing - Synced all registry files to v1.5.0 | ## Citation - HTML: https://www.freshcrate.ai/projects/tweetclaw - Markdown: https://www.freshcrate.ai/projects/tweetclaw.md - Dependencies JSON: https://www.freshcrate.ai/api/projects/tweetclaw/deps _Generated by freshcrate.ai. Indexes github releases for AI-agent ecosystem packages._