hootsuite-core-workflow-a
Automates Hootsuite's core workflow for scheduling social media posts with media, enhancing social media management efficiency.
Install this skill
Security score
The hootsuite-core-workflow-a skill was audited on May 18, 2026 and we found 12 security issues across 3 threat categories. Review the findings below before installing.
Categories Tested
Security Issues
Template literal with variable interpolation in command context
| 51 | const response = await fetch(`${BASE}/media`, { |
Template literal with variable interpolation in command context
| 54 | 'Authorization': `Bearer ${TOKEN}`, |
Template literal with variable interpolation in command context
| 73 | if (response.status !== 200) throw new Error(`Upload failed: ${response.status}`); |
Template literal with variable interpolation in command context
| 79 | const response = await fetch(`${BASE}/media/${mediaId}`, { |
Template literal with variable interpolation in command context
| 80 | headers: { 'Authorization': `Bearer ${TOKEN}` }, |
Template literal with variable interpolation in command context
| 97 | const response = await fetch(`${BASE}/messages`, { |
Template literal with variable interpolation in command context
| 100 | 'Authorization': `Bearer ${TOKEN}`, |
Template literal with variable interpolation in command context
| 114 | console.log(`Message ${msg.id}: ${msg.state} → ${msg.scheduledSendTime}`); |
Template literal with variable interpolation in command context
| 145 | throw new Error(`Media rejected: ${status.state}`); |
Access to .env file
| 46 | const TOKEN = process.env.HOOTSUITE_ACCESS_TOKEN!; |
External URL reference
| 47 | const BASE = 'https://platform.hootsuite.com/v1'; |
External URL reference
| 201 | - [REST API Reference](https://apidocs.hootsuite.com/docs/api/index.html) |