ClawHub

Douyin Content Tracker Skill

Security checks across malware telemetry and agentic risk

Overview

This Douyin scraping skill is mostly purpose-aligned, but it stores and reuses login cookies and has local file-handling and dependency risks users should review before installing.

Install only in a trusted or isolated environment. Use a dedicated Douyin account if possible, protect or delete .douyin_cookies.json after use, avoid syncing or committing it, review and pin MediaCrawler and Python dependencies, and fix the blogger-name path handling before processing untrusted account data.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (10)

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The README instructs users to generate and store Douyin login cookies locally in a JSON file, but it does not warn that these cookies are effectively authentication material and should be protected like credentials. If the file is exposed through weak filesystem permissions, backups, commits, or malware, an attacker may be able to hijack the user's authenticated Douyin session.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The skill stores authenticated Douyin session cookies in a local JSON file but provides no warning that these are sensitive credentials equivalent to a logged-in session. If the file is exposed through backups, shared directories, malware, or accidental disclosure, an attacker could reuse the cookies to hijack the user's Douyin session until expiry or revocation.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The script reads authentication cookies from a local file and forwards them to a child process on the command line via the `--cookies` argument. Command-line arguments are often exposed to local process inspection tools and shell history/logging, so Douyin session credentials may be disclosed to other local users or monitoring software. In this skill's context, the cookies are real account credentials used for scraping, which makes the exposure more meaningful than a purely synthetic example.

Unpinned Dependencies

Low
Category
Supply Chain
Content
# 采集
playwright

# 数据处理
pandas
Confidence
90% confidence
Finding
playwright

Unpinned Dependencies

Low
Category
Supply Chain
Content
playwright

# 数据处理
pandas
jieba

# 音频提取(ffmpeg wrapper,用于获取 ffmpeg 可执行文件)
Confidence
94% confidence
Finding
pandas

Unpinned Dependencies

Low
Category
Supply Chain
Content
# 数据处理
pandas
jieba

# 音频提取(ffmpeg wrapper,用于获取 ffmpeg 可执行文件)
imageio-ffmpeg
Confidence
88% confidence
Finding
jieba

Unpinned Dependencies

Low
Category
Supply Chain
Content
jieba

# 音频提取(ffmpeg wrapper,用于获取 ffmpeg 可执行文件)
imageio-ffmpeg

# 语音识别
openai-whisper
Confidence
92% confidence
Finding
imageio-ffmpeg

Unpinned Dependencies

Low
Category
Supply Chain
Content
imageio-ffmpeg

# 语音识别
openai-whisper

# 其他
python-dotenv
Confidence
93% confidence
Finding
openai-whisper

Unpinned Dependencies

Low
Category
Supply Chain
Content
openai-whisper

# 其他
python-dotenv
Confidence
91% confidence
Finding
python-dotenv

Known Vulnerable Dependency: python-dotenv — 1 advisory(ies): CVE-2026-28684 (python-dotenv: Symlink following in set_key allows arbitrary file overwrite via )

Low
Category
Supply Chain
Confidence
80% confidence
Finding
python-dotenv

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal