What Bot Hound Can Access

Bot Hound uses OAuth 2.0 to request only the specific permissions it needs. Here's exactly what we ask for and why.

The short answer

Bot Hound requests a narrow set of permissions — just enough to scan your followers for bots and block them on your behalf. We cannot post tweets, send DMs, follow accounts, or change your profile.

We only request the specific scopes listed below — nothing more
We will never post tweets, send DMs, follow accounts, or read your direct messages
You can revoke Bot Hound's access at any time from your X account settings

Permissions we request

When you connect your X account, Bot Hound requests these OAuth 2.0 scopes:

block.write — block accounts (to remove detected bots)
block.read — view your block list
follows.read — read your followers list (to scan for bots)
users.read — read your profile (to identify your account)
tweet.read — read tweets (required by the API alongside users.read)
offline.access — stay connected without requiring re-authorization every 2 hours

What we actually do

Read your followers list (to scan for bots)
Block accounts (to remove detected bots)
Unblock accounts (when you override a detection)
Read your profile (to identify your account)

What we do NOT do

Bot Hound does not have permission to perform any of the following:

Post or delete tweets
Like, retweet, or bookmark
Follow or unfollow accounts
Send or read direct messages
Change your profile or settings