ClawHub
Back to skill
v1.0.0

XHS Video Downloader

ReviewClawScan verdict for this skill. Analyzed May 1, 2026, 6:11 AM.

Analysis

The skill matches its video-downloading purpose, but its recommended workflow can put page-extracted URLs directly into a shell command, so it should be reviewed before use.

GuidanceReview the extracted video URL before downloading, only use expected Xiaohongshu/xhscdn video URLs, and avoid blindly pasting page-derived values into a shell command. If using the Python helper, install its requests dependency from a trusted source.

Findings (2)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation
SeverityMediumConfidenceMediumStatusConcern
SKILL.md
Extract the video URL with JavaScript ... html.match(/https?:\/\/[^"\s]+\.mp4[^"\s]*/g); ... curl -L -o output.mp4 "<VIDEO_URL>"

The recommended method takes a URL found in webpage HTML and places it into a shell command. The artifacts do not require validating that the URL is an expected Xiaohongshu CDN URL or passing it as a shell-safe argument.

User impactA malicious or compromised page could cause the agent to download an unexpected URL, and unsafe shell substitution of a crafted URL could lead to unintended local command behavior.
RecommendationBefore running curl, verify the URL is an expected xhscdn.com video URL and avoid shell interpolation; prefer the Python requests path or pass arguments through a safe tool API.
Agentic Supply Chain Vulnerabilities
SeverityLowConfidenceHighStatusNote
scripts/download_video.py
Requirements:
    - requests: pip install requests
...
import requests

The helper uses an external Python dependency, but the supplied artifacts include no install spec, version pin, or lockfile.

User impactUsers may need to install a Python package manually, which introduces normal dependency-provenance considerations.
RecommendationInstall requests only from a trusted package source, and prefer a pinned requirements file if this skill is packaged for repeated use.