Ask Pwned Bot uses https://haveibeenpwned.com API to check if your account has been pwned.
The implementation of the webhook is done using https://webtask.io/ a serverless solution.
https://twitter.com/askpwnedbot
- Create a Telegram Bot and get its token:
https://core.telegram.org/bots
- Deploy the webtask:
wt create askpwnedbot-telegram.js --name askpwnedbot-telegram --secret BOT_TOKEN=$BOT_TOKEN
- Set the webhook:
curl -X POST -d "url=$WEBTASK_URL" -H "Content-Type: application/x-www-form-urlencoded" https://api.telegram.org/bot$BOT_TOKEN/setWebhook
- Create a Twitter app + developer account to use Account Activity API
https://developer.twitter.com/en/docs/accounts-and-users/subscribe-account-activity/overview
- Deploy the webtask:
wt create askpwnedbot-twitter.js --name askpwnedbot-twitter --secret TWITTER_BOT_ID=$TWITTER_BOT_ID --secret TWITTER_CONSUMER_KEY=$TWITTER_CONSUMER_KEY --secret TWITTER_CONSUMER_SECRET=$TWITTER_CONSUMER_SECRET --secret TWITTER_ACCESS_TOKEN_KEY=$TWITTER_ACCESS_TOKEN_KEY --secret TWITTER_ACCESS_TOKEN_SECRET=$TWITTER_ACCESS_TOKEN_SECRET
- Setup the webhook:
node scripts/setup_twitter_webhook.js
- Setup the subscription:
node scripts/setup_twitter_subscription.js