Withme Youtube
WarnAudited by ClawScan on May 10, 2026.
Overview
The skill’s YouTube production workflow is coherent, but it should be reviewed because it can use local Google/YouTube/Envato credentials, run unreviewed helper scripts, and automatically schedule public uploads.
Only install this if you trust the workflow and the referenced local helper scripts. Use dedicated least-privilege Google/YouTube and Envato credentials, review the external scripts before running them, confirm every licensed download and upload queue entry, and require an explicit final approval before anything is scheduled or published.
Findings (5)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent could use your Google/YouTube credentials and API quota, and could upload or schedule content under your account.
The workflow tells the agent to read a local model-provider API key and use YouTube OAuth/account material. This is high-impact delegated account access, especially because the registry metadata declares no credential or config-path requirements.
GEMINI_API_KEY="$(python3 -c "...open('$HOME/.openclaw/openclaw.json')...['google']['apiKey']...")" ... OAuth 凭证:`~/.openclaw/shared/youtube_client_secret.json` ... Google 账号:`kylin1986@gmail.com`Declare all required credentials and config paths, use dedicated least-privilege accounts or tokens, and require explicit confirmation before any upload or scheduling action.
A mistaken topic, asset choice, SEO package, or queue entry could propagate into public YouTube publishing unless the user catches it at the stated checkpoints.
The skill describes an end-to-end autonomous pipeline that can progress from a single trigger through asset generation, downloading, video creation, upload scheduling, and Shorts slicing, with only limited checkpoints.
`YouTube 上传 | exec youtube_upload.py | 脚本自动上传+排程` ... `小米自动执行阶段 1-8,仅在 3 个节点暂停等 Ken 确认。`
Add an explicit final publish approval, preview the exact upload queue entry, and provide a clear stop/rollback procedure before any scheduled upload or Shorts publication.
The agent can act inside a logged-in browser session and initiate downloads on your behalf, which may affect account licensing, downloads, or service terms if not closely scoped.
The Envato flow uses Chrome DevTools Protocol to enable downloads and execute JavaScript clicks in an authenticated browser page, and frames this as necessary because web_fetch is blocked.
`Page.setDownloadBehavior` ... `Runtime.evaluate` ... `document.querySelectorAll('button').forEach(...Download...b.click())` ... `必须用 browser 工具(web_fetch 会被 Cloudflare 403)`Prefer official APIs or manual approval for each licensed download, restrict CDP use to the intended Envato page and target directory, and avoid broad automated clicking in authenticated sessions.
Installing the skill would rely on local code that was not reviewed here, including code with access to credentials and public posting authority.
Important helper scripts are referenced outside the reviewed package. One uses API keys for image generation and another handles YouTube upload/scheduling, but their source and behavior are not present in the provided artifacts.
`uv run /Users/withme/.openclaw/shared/generate_image.py` ... 上传脚本:`~/.openclaw/shared/youtube_upload.py`
Review and pin the helper scripts, include them in the package or document their provenance, and avoid running external shared scripts automatically until verified.
Draft titles, descriptions, tags, progress, and workflow state may remain available to future agent sessions.
The skill stores publishing materials and progress in persistent memory files. This is purpose-aligned, but persistent files can influence later tasks or expose drafts if not managed.
整合为 `memory/youtube-publish-v{N}.md` ... 每个阶段完成后更新 `memory/youtube-progress-v{N}.md`Review persistent memory files before reuse, delete stale versions, and avoid putting secrets or private account details in these files.