Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Baoyu Youtube Transcript
v1.89.2Downloads YouTube video transcripts/subtitles and cover images by URL or video ID. Supports multiple languages, translation, chapters, and speaker identifica...
⭐ 0· 396·8 current·8 all-time
byJim Liu 宝玉@jimliu
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name/description (YouTube transcripts and thumbnails) align with the included TypeScript code and CLI scripts. The declared runtime requirement (bun or npx) is appropriate to run the provided scripts. No unrelated cloud credentials, platform tokens, or unrelated binaries are requested.
Instruction Scope
SKILL.md instructs the agent to run local scripts in the skill directory to fetch and cache transcripts and thumbnails. The runtime instructions and code only fetch video pages, call YouTube InnerTube endpoints, and optionally fall back to yt-dlp. They read/write files only under the configured output directory. The fallback path to yt-dlp is explicitly documented in SKILL.md and implemented in code.
Install Mechanism
No install spec is present (instruction-only install), so nothing is downloaded or installed automatically by the skill. The included source files are executed via bun/npx as documented. The code uses child_process.spawnSync to run an external yt-dlp fallback when available; this is an expected implementation detail for a YouTube-fetching tool and not an untracked remote download.
Credentials
The skill requests no required environment variables. SKILL.md documents one optional env var, YOUTUBE_TRANSCRIPT_COOKIES_FROM_BROWSER, which is passed through to yt-dlp when used. That option (if set and yt-dlp is invoked) can cause yt-dlp to access local browser profiles/cookies — a sensitive action. This is optional and documented, but users should avoid setting it unless they understand the privacy implications.
Persistence & Privilege
The skill does not request permanent/always-on inclusion and does not modify other skills or system-wide agent settings. It writes cached files to a predictable local directory (default youtube-transcript/) and an .index.json map — standard for a caching CLI tool.
Assessment
This skill appears to do what it says: fetch YouTube transcripts and thumbnails and cache them under a local folder (youtube-transcript/ by default). Before installing or running: 1) review the code if you are concerned about executing bundled scripts; it will perform network requests to YouTube and write files locally (meta.json, transcript-raw.json, transcript-sentences.json, imgs/cover.jpg, etc.). 2) Do not set the optional YOUTUBE_TRANSCRIPT_COOKIES_FROM_BROWSER environment variable unless you understand that, when yt-dlp is invoked, it may read browser cookie stores (which can expose authentication/session cookies). 3) yt-dlp is only used as a fallback; to avoid unexpected local process execution, ensure you trust any locally installed yt-dlp binary. 4) If you need stricter isolation, run the scripts manually in a sandbox or inspect the yt-dlp command-line arguments in the code path before allowing fallback behavior.scripts/youtube.ts:293
Shell command execution detected (child_process).
scripts/youtube.ts:377
Environment variable access combined with network send.
Patterns worth reviewing
These patterns may indicate risky behavior. Check the VirusTotal and OpenClaw results above for context-aware analysis before installing.Like a lobster shell, security has layers — review code before you run it.
latestvk9705q15edg1ayykns45q9khp1847k02
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
Any binbun, npx