ClawHub
Back to skill
v1.0.0

Bilibili & YouTube Watcher

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 5:49 AM.

Analysis

The skill does what it claims—fetches video subtitles via yt-dlp—but users should notice the external downloader installation and optional browser-cookie troubleshooting advice.

GuidanceThis skill appears safe for its stated purpose of fetching public video transcripts. Before installing, make sure you are comfortable installing yt-dlp, preferably through a trusted package manager. Avoid using the optional browser-cookie troubleshooting command unless you intentionally want yt-dlp to use your logged-in browser session for a video site.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation
SeverityLowConfidenceHighStatusNote
scripts/get_transcript.py
result = subprocess.run(cmd, cwd=temp_dir, check=True, capture_output=True)

The script runs the external yt-dlp tool against the supplied video URL. This is central to the transcript-fetching purpose and uses an argument list rather than a shell, so it is a purpose-aligned note rather than a concern.

User impactThe skill can contact video platforms and download subtitle files for URLs the agent is asked to process.
RecommendationUse it for video URLs you intend to analyze, and avoid passing unrelated or untrusted links.
Agentic Supply Chain Vulnerabilities
SeverityLowConfidenceHighStatusNote
README.md
sudo curl -L https://github.com/yt-dlp/yt-dlp/releases/latest/download/yt-dlp -o /usr/local/bin/yt-dlp

The README documents an optional Linux install method that downloads the latest yt-dlp binary directly and writes it with sudo privileges. yt-dlp is expected for this skill, but this install route has more supply-chain exposure than a pinned package manager install.

User impactIf followed, this installation method places a downloaded executable on the system with elevated privileges.
RecommendationPrefer the declared package-manager install where possible, or verify the downloaded yt-dlp release before installing it.
Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse
SeverityMediumConfidenceMediumStatusNote
README.md
Use cookies: `yt-dlp --cookies-from-browser chrome "URL"`

The README suggests an optional troubleshooting command that would allow yt-dlp to read browser cookies. This can be legitimate for accessing videos, but browser cookies are sensitive session data and this is not part of the main script or declared credential requirements.

User impactUsing this troubleshooting command could let yt-dlp access logged-in browser session cookies for the relevant site.
RecommendationOnly use browser-cookie options if you understand the account-access implications and trust the yt-dlp installation.