Bilibili 收藏视频下载

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward Bilibili favorites downloader; its main risk is expected bandwidth and disk use from saving videos locally.

Before running it, expect it may download many videos and use substantial bandwidth and disk space. Start with list-only mode, then use a small max-download value and an explicit output folder. Provide only the Bilibili favorites URL or ID, not cookies, passwords, or account tokens.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill defaults to downloading and saving potentially many video files to a local directory, but the description does not prominently warn that execution causes local filesystem writes by default. This is dangerous because users may think they are only listing or inspecting favorites, while the tool can consume disk space, create persistent files, and trigger unintended bulk downloads.

VirusTotal

67/67 vendors flagged this skill as clean.

View on VirusTotal