ClawHub

bilibili-watcher

v1.0.0

Fetch and read transcripts from Bilibili (B 站) videos. Use when you need to summarize a B 站 video, answer questions about its content, or extract information...

0· 147·0 current·0 all-time
by@jiashuoji838-afk
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The skill is a transcript fetcher and requires yt-dlp, which is the expected tool for downloading subtitles; the bundled script calls yt-dlp to retrieve video info and subtitles. No unrelated binaries, env vars, or config paths are requested.
Instruction Scope
SKILL.md instructs running the included Python script on a Bilibili URL, and the script only invokes yt-dlp and prints/returns subtitle text. One scope note: the yt-dlp flags used (e.g., --write-sub/--write-auto-sub) will cause subtitle files to be written to the working directory in addition to printing output, which SKILL.md does not explicitly warn about.
Install Mechanism
There is no registry install spec, but the SKILL.md metadata suggests installing yt-dlp via pip, which is a normal and proportionate suggestion for the declared binary dependency. No downloads from obscure URLs or archive extraction are present.
Credentials
The skill requires no environment variables or credentials. It only needs the yt-dlp binary; no secrets or unrelated service tokens are requested.
Persistence & Privilege
The skill does not request always:true and is user-invocable (default). It does not modify other skills or system-wide settings and has ordinary runtime privileges.
Assessment
This skill appears to do what it says: it runs the included Python script which calls yt-dlp to fetch subtitles from Bilibili. Before installing or running it, ensure yt-dlp is a tool you trust and is installed from an official source. Be aware that yt-dlp will access the network to fetch videos/subtitles and will likely write subtitle files into the current working directory (because of --write-sub flags); run it in a directory you control or a sandbox if you are concerned about disk writes. Do not pass private URLs or credentials to the script. If you want extra assurance, inspect the yt-dlp command flags and run the script once manually to verify its behavior.

Like a lobster shell, security has layers — review code before you run it.

latestvk9796ge79y47rr2nygrbmt0dtx832dhn

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

📺 Clawdis
Binsyt-dlp

Comments