buffer

Enables social media post scheduling and management through Buffer's API for various platforms.

Install this skill

45/100

Security score

The buffer skill was audited on May 16, 2026 and we found 23 security issues across 2 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 59

Curl to non-GitHub URL

SourceSKILL.md

59	curl -s -X POST "https://api.buffer.com" --header "Authorization: Bearer $BUFFER_TOKEN" --header "Content-Type: application/json" -d @/tmp/buffer_orgs.json

medium line 74

Curl to non-GitHub URL

SourceSKILL.md

74	curl -s -X POST "https://api.buffer.com" --header "Authorization: Bearer $BUFFER_TOKEN" --header "Content-Type: application/json" -d @/tmp/buffer_channels.json

medium line 97

Curl to non-GitHub URL

SourceSKILL.md

97	curl -s -X POST "https://api.buffer.com" --header "Authorization: Bearer $BUFFER_TOKEN" --header "Content-Type: application/json" -d @/tmp/buffer_create_post.json

medium line 130

Curl to non-GitHub URL

SourceSKILL.md

130	curl -s -X POST "https://api.buffer.com" --header "Authorization: Bearer $BUFFER_TOKEN" --header "Content-Type: application/json" -d @/tmp/buffer_create_image_post.json

medium line 153

Curl to non-GitHub URL

SourceSKILL.md

153	curl -s -X POST "https://api.buffer.com" --header "Authorization: Bearer $BUFFER_TOKEN" --header "Content-Type: application/json" -d @/tmp/buffer_posts.json \| jq '.data.posts.edges[].node'

medium line 176

Curl to non-GitHub URL

SourceSKILL.md

176	curl -s -X POST "https://api.buffer.com" --header "Authorization: Bearer $BUFFER_TOKEN" --header "Content-Type: application/json" -d @/tmp/buffer_update_post.json

medium line 191

Curl to non-GitHub URL

SourceSKILL.md

191	curl -s -X POST "https://api.buffer.com" --header "Authorization: Bearer $BUFFER_TOKEN" --header "Content-Type: application/json" -d @/tmp/buffer_delete_post.json

medium line 223

Curl to non-GitHub URL

SourceSKILL.md

223	curl -s -X POST "https://api.buffer.com" --header "Authorization: Bearer $BUFFER_TOKEN" --header "Content-Type: application/json" -d @/tmp/buffer_posts.json \| jq '{next: .data.posts.pageInfo.endCursor

low line 4

External URL reference

SourceSKILL.md

4	homepage: https://buffer.com

low line 5

External URL reference

SourceSKILL.md

5	docs: https://developers.buffer.com

low line 10

External URL reference

SourceSKILL.md

10	If requests fail, run `zero doctor check-connector --env-name BUFFER_TOKEN` or `zero doctor check-connector --url https://api.buffer.com --method POST`

low line 25

External URL reference

SourceSKILL.md

25	Base URL: `https://api.buffer.com`

low line 46

External URL reference

SourceSKILL.md

46	All calls hit the same endpoint: `POST https://api.buffer.com`. Change only the GraphQL document.

low line 59

External URL reference

SourceSKILL.md

59	curl -s -X POST "https://api.buffer.com" --header "Authorization: Bearer $BUFFER_TOKEN" --header "Content-Type: application/json" -d @/tmp/buffer_orgs.json

low line 74

External URL reference

SourceSKILL.md

74	curl -s -X POST "https://api.buffer.com" --header "Authorization: Bearer $BUFFER_TOKEN" --header "Content-Type: application/json" -d @/tmp/buffer_channels.json

low line 88

External URL reference

SourceSKILL.md

88	"text": "Launching today: our new onboarding flow. Read more at https://example.com",

low line 97

External URL reference

SourceSKILL.md

97	curl -s -X POST "https://api.buffer.com" --header "Authorization: Bearer $BUFFER_TOKEN" --header "Content-Type: application/json" -d @/tmp/buffer_create_post.json

low line 119

External URL reference

SourceSKILL.md

119	{ "url": "https://example.com/screenshot.png", "altText": "Changelog screenshot" }

low line 130

External URL reference

SourceSKILL.md

130	curl -s -X POST "https://api.buffer.com" --header "Authorization: Bearer $BUFFER_TOKEN" --header "Content-Type: application/json" -d @/tmp/buffer_create_image_post.json

low line 153

External URL reference

SourceSKILL.md

153	curl -s -X POST "https://api.buffer.com" --header "Authorization: Bearer $BUFFER_TOKEN" --header "Content-Type: application/json" -d @/tmp/buffer_posts.json \| jq '.data.posts.edges[].node'

low line 176

External URL reference

SourceSKILL.md

176	curl -s -X POST "https://api.buffer.com" --header "Authorization: Bearer $BUFFER_TOKEN" --header "Content-Type: application/json" -d @/tmp/buffer_update_post.json

low line 191

External URL reference

SourceSKILL.md

191	curl -s -X POST "https://api.buffer.com" --header "Authorization: Bearer $BUFFER_TOKEN" --header "Content-Type: application/json" -d @/tmp/buffer_delete_post.json

low line 223

External URL reference

SourceSKILL.md

223	curl -s -X POST "https://api.buffer.com" --header "Authorization: Bearer $BUFFER_TOKEN" --header "Content-Type: application/json" -d @/tmp/buffer_posts.json \| jq '{next: .data.posts.pageInfo.endCursor

Scanned on May 16, 2026

View Security Dashboard

Installation guide →

GitHub Stars 60

Rate this skill

Categorymarketing

UpdatedMay 20, 2026

openclaw api social-media-manager content-marketer growth-marketer buffer marketing

vm0-ai/vm0-skills