ClawHub

Baidu Netdisk AIVideoNotes

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed Baidu video-notes integration that sends user-selected video content or video URLs to Baidu using a Baidu API key.

Install only if you are comfortable sending the selected videos, accessible video URLs, task IDs, and generated notes to Baidu or the configured OpenClaw/Baidu proxy environment. Use a dedicated or least-privilege Baidu API key where possible, keep it in environment configuration rather than command history or source files, and avoid using this skill for confidential, regulated, or proprietary recordings unless Baidu's handling terms meet your needs.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
78% confidence
Finding
The description is broad enough to overlap with common requests such as summarizing videos, extracting notes, or converting video to text, without clearly defining when this external skill should be invoked versus safer/local alternatives. Overbroad triggering can cause unnecessary routing of user content to a third-party service, increasing privacy and data-handling risk.

Missing User Warnings

High
Confidence
95% confidence
Finding
The skill explicitly supports local and network video inputs and sends them to an external AI note service, but the documentation does not warn users about privacy, third-party transfer, retention, or sensitive-content implications. In this context, videos may contain meetings, classes, or personal recordings, so silent external processing materially increases confidentiality and compliance risk.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The skill requires a sensitive credential (`BAIDU_API_KEY`) but does not explain what it authorizes, how it should be stored, or how misuse could expose account access or billable API usage. Missing credential-handling guidance increases the chance of accidental leakage through logs, scripts, screenshots, or misconfigured environments.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal