ClawHub

Youtube Podcast summarizer via Elevenlabs

Security checks across malware telemetry and agentic risk

Overview

This skill does what it claims: it sends YouTube links to a local summarizer backend that uses disclosed third-party services to create text and audio summaries.

Before installing, review the external GitHub backend and its npm dependencies, keep the required API keys private, set spending limits where possible, and avoid using this for private, sensitive, or regulated YouTube content unless you are comfortable with Supadata, OpenRouter/Cerebras, and ElevenLabs processing the data.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (5)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The README explicitly describes sending YouTube links and derived content through multiple third-party services, but it provides no warning about privacy, data handling, retention, or consent implications. This is dangerous because users may unknowingly submit private, unlisted, sensitive, or regulated content metadata/transcripts to external providers, creating avoidable privacy and compliance risk.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill explicitly routes user-submitted YouTube URLs and derived transcript/summary content through multiple third-party services (Supadata, OpenRouter, ElevenLabs), but it does not warn users about that data sharing in the user-facing description. This creates a privacy and consent issue because users may submit sensitive or private video links without understanding that their content will be transmitted off-platform.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The manifest declares external-service API keys and endpoints indicating that user-supplied YouTube URLs and likely derived video content will be sent to third parties for summarization and text-to-speech, but it provides no disclosure or consent warning. This creates a privacy and data-handling risk because users may unknowingly submit links or content that are sensitive, proprietary, or subject to policy restrictions.

External Transmission

Medium
Category
Data Exfiltration
Content
### Step 1: Start the voice summary job

```bash
curl -s -X POST http://127.0.0.1:3050/api/summarize \
  -H "Content-Type: application/json" \
  -d '{"url":"YOUTUBE_URL","length":"short","voice":"podcast"}'
```
Confidence
88% confidence
Finding
curl -s -X POST http://127.0.0.1:3050/api/summarize \ -H "Content-Type: application/json" \ -d

External Transmission

Medium
Category
Data Exfiltration
Content
1. Start job:
```bash
curl -s -X POST http://127.0.0.1:3050/api/summarize \
  -H "Content-Type: application/json" \
  -d '{"url":"https://www.youtube.com/watch?v=dQw4w9WgXcQ","length":"short","voice":"podcast"}'
```
Confidence
86% confidence
Finding
curl -s -X POST http://127.0.0.1:3050/api/summarize \ -H "Content-Type: application/json" \ -d '{"url":"https://www.youtube.com/watch?v=dQw4w9WgXcQ","length":"short","voice":"podcast"}' ``` 2. Po

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal