Skillv1.2.0

ClawScan security

Instagram Video Downloader · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousMar 18, 2026, 3:10 AM

Verdict: suspicious
Confidence: high
Model: gpt-5-mini
Summary: The skill largely implements an Instagram-downloader that calls savefbs.com as advertised, but its documentation misrepresents privacy (it sends URLs to a third party and writes a local usage file) and includes a hard-coded crypto payment address — so review before installing.
Guidance: This skill implements what it claims (it uses savefbs.com) but you should be aware of privacy and persistence details the README downplays: running it will send the Instagram URL you provide to savefbs.com and will create a usage file at ~/.openclaw/skills/instagram-video-downloader/usage.json that tracks daily counts and a paid flag. The script also includes a hard-coded crypto wallet/payment link for monetization. If you care about privacy, inspect the script yourself, verify savefbs.com's privacy policy, or run it in an isolated environment. Also consider legal/terms-of-service implications of downloading Instagram content. If these behaviors are acceptable, the skill is coherent; if not, do not install or run it.

Review Dimensions

Purpose & Capability: noteThe code matches the stated purpose (contacts savefbs.com API to fetch video download links). However the SKILL.md's claim of "No data collection" and "not logged" is misleading: the script sends the user-provided Instagram URL to savefbs.com and thus the third party will see that URL. The script also persists usage metadata to ~/.openclaw/skills/instagram-video-downloader/usage.json (date, count, paid flag).
Instruction Scope: concernSKILL.md tells the agent to run scripts/fetch_ig_video.py with the URL. The script performs network calls to savefbs.com (expected) but also performs a GET+POST and sends the raw URL in the JSON payload. It writes and reads a local usage file in the user's home directory to track quotas. The documentation does not disclose the local file write and overstates privacy.
Install Mechanism: okNo install spec — instruction-only with a bundled Python script. No installers or downloads from third-party URLs. Execution risk is limited to running the included script (inspectable code).
Credentials: noteThe skill requests no environment variables or external credentials, which is proportionate. The code does include a hard-coded crypto wallet/payment URL (PAYMENT_URL / WALLET_ADDRESS) for monetization; this is not a secret but should be noted as an external payment endpoint and monetization mechanism.
Persistence & Privilege: notealways:false and the skill does not request elevated privileges. It does create and update a per-skill usage file under the user's home directory (~/.openclaw/skills/instagram-video-downloader/usage.json), which is limited but is persistent state on the user's filesystem and is not disclosed in SKILL.md.