Back to skill
Skillv1.0.0
VirusTotal security
Bilibili & YouTube Watcher · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignMay 1, 2026, 4:16 AM
- Hash
- 91802a21044e741ae522641e5a1d39a41671794c7db10e1ae69e3dc6e2d8cc88
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: bilibili-youtube-watcher Version: 1.0.0 The skill bundle is benign. The `scripts/get_transcript.py` uses `subprocess.run` with a list of arguments to execute `yt-dlp`, which prevents shell injection from user-controlled `url` or `language` inputs. There is no evidence of data exfiltration, malicious execution, persistence mechanisms, or prompt injection attempts against the OpenClaw agent in `SKILL.md` or `README.md`. The skill's functionality is clearly aligned with its stated purpose of fetching video transcripts.
- External report
- View on VirusTotal