Letterboxd Watchlist
AdvisoryAudited by Static analysis on Apr 30, 2026.
Overview
No suspicious patterns detected.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Running the skill will contact Letterboxd for the named public profile and may overwrite the chosen output file if it already exists.
The tool performs network scraping against Letterboxd and writes to the user-supplied output path. This is expected for the stated purpose, but it is still an action the user should understand.
url = f"{BASE}/{username}/watchlist/page/{page}/" ... with open(path, "w", newline="", encoding="utf-8") as f:Use it only for public watchlists, keep the default-style CSV/JSONL output path in a safe working folder, and avoid pointing `--out` at important existing files.
The skill may fail or behave differently from expectations if `uv` or a suitable Python runner is not available.
The usage examples rely on local execution through `uv`, while the registry metadata lists no required binaries or install spec. This is a small setup/declaration gap, not evidence of hidden behavior.
uv run scripts/scrape_watchlist.py <username> --out watchlist.csv
Declare the required runner explicitly, or run the reviewed script with an available trusted Python environment.