ClawHub

Bilibili Player

Security checks across malware telemetry and agentic risk

Overview

This skill appears to do what it advertises: search Bilibili and open a matching video in the user's browser, with normal privacy caveats for browser playback.

Install this only if you want an agent to search Bilibili and open videos for you. Expect your search terms to be sent to Bilibili and the selected page to open in your normal browser session; use a separate browser profile or log out if you do not want activity tied to your account.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
89% confidence
Finding
The skill explicitly describes shell-capable behavior, including invoking the system `open` command, yet no permissions are declared. This creates a transparency and policy gap: the agent may perform local command execution and browser-launch side effects without users or enforcement layers being clearly informed in metadata.

Vague Triggers

Medium
Confidence
81% confidence
Finding
The activation scope includes an open-ended condition like handling 'any' scenario needing Bilibili playback, which is overly broad for a skill that performs network search and opens browser content. Broad triggers increase the chance of unintended invocation, causing external navigation or media playback when the user did not clearly consent to that specific side effect.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The skill states it will search Bilibili and then open the result in the user's current/default browser, explicitly benefiting from the user's login state and cookies, but it does not clearly warn about those privacy and session implications. This is dangerous because it can cause automatic external site access and content loading in an authenticated browser context, exposing behavioral metadata and potentially triggering site actions tied to the user's account.

VirusTotal

50/50 vendors flagged this skill as clean.

View on VirusTotal