ClawHub

Yt Assemblyai Monitor

Security checks across malware telemetry and agentic risk

Overview

This skill does what it says: it monitors or transcribes video content by sending audio URLs to AssemblyAI and saving results locally.

Install only if you are comfortable sending video audio URLs and resulting transcript data to AssemblyAI for cloud processing. Prefer the environment variable over data/config.json for the API key, avoid confidential or regulated content unless approved, and delete saved summaries if the transcripts are sensitive.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (4)

Lp3

Medium
Category
MCP Least Privilege
Confidence
94% confidence
Finding
The skill clearly requires sensitive capabilities—environment access for API keys, local file reads/writes for config and results, and outbound network access to YouTube and AssemblyAI—but does not declare permissions. This creates a transparency and least-privilege problem: users or hosting platforms cannot accurately assess or constrain what the skill can access, increasing the chance of unintended data exposure or overbroad execution.

Context-Inappropriate Capability

Medium
Confidence
94% confidence
Finding
The code explicitly allows non-YouTube URLs by treating any non-YouTube input as a direct audio URL and sending it to AssemblyAI. This expands the skill from YouTube monitoring into a generic remote URL fetch/transcription proxy, which can cause unintended data exfiltration or processing of sensitive internal/private media if a user or upstream agent supplies arbitrary URLs.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The skill states that AssemblyAI handles transcription server-side, but it does not give a clear user-facing privacy warning that video/audio URLs and transcription content are sent to a third-party cloud service. Users may provide private, sensitive, or regulated content without understanding that the material and derived text leave the local environment, creating confidentiality and compliance risks.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The script sends extracted audio URLs to AssemblyAI for transcription and receives transcript/summary data without any explicit disclosure, consent flow, or warning in code. Because video audio and derived transcript content may contain sensitive, copyrighted, or private information, forwarding it to a third-party cloud processor creates a real privacy and compliance risk.

VirusTotal

61/61 vendors flagged this skill as clean.

View on VirusTotal