xurl Use for X API work. Shortcut commands return JSON; raw mode works for any v2 endpoint. Secret safety - Never read, print, summarize, upload, or inspect . - Never ask user to paste tokens/secrets into chat. - Do not run auth commands with inline secrets. - Do not use in agent sessions; it can expose auth headers. - Check auth with . Common shortcuts can be a full URL. Media Videos may need processing; poll . Auth/app management Per request: Raw API Use raw mode when shortcuts do not cover the endpoint. Keep payloads in temp files for complex JSON. Output and errors - JSON stdout on succes…