Back to skill

Security audit

Jable Downloader

Security checks across malware telemetry and agentic risk

Overview

The skill mostly matches its stated purpose (downloading Jable videos) but includes network-exposing behavior (auto-starting a Flask+SocketIO server with open CORS and advertising IPs) and a Telegram notification feature that is undocumented in the manifest (no credentials/config declared), which are disproportionate and merit caution.

This skill appears to implement a legitimate video downloader but has a few red flags you should consider before installing or running it: - Telegram notifications are promised but no Telegram token/chat ID is declared in the skill metadata. Ask the author how Telegram is configured; do not provide tokens unless you trust the source. Inspect the script for any hardcoded tokens or remote endpoints. - The skill auto-starts a Flask+SocketIO web server bound to port 5000 and advertises accessible IPs; it uses CORS='*'. That can expose download metadata and possibly control endpoints to your LAN or other networked hosts. If you run it, consider binding the server to localhost only or using a firewall to restrict access. - The script runs subprocesses (yt-dlp, ffmpeg) and writes files into your Videos/Downloads directories. Run it in an isolated environment (container or VM) if you are unsure. - Review the full jable_downloader.py for any endpoints that accept remote commands or send data externally (HTTP requests, hardcoded webhook URLs). The truncated file shows no obvious exfiltration, but the Telegram and network behavior increase risk. If you want to proceed, request clarification from the publisher about Telegram configuration and network binding; or run the skill locally with network disabled/blocked and with a manual (non-automatic) server start to limit exposure.

SkillSpector

By NVIDIA

SkillSpector findings are pending for this release.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal