Social Video Distill
PassAudited by VirusTotal on May 10, 2026.
Overview
Type: OpenClaw Skill Name: social-video-distill Version: 0.1.0 The skill bundle provides a legitimate set of tools for extracting captions and summarizing social media videos using yt-dlp and a Puppeteer-based bridge to Gemini. The scripts (scripts/extract_captions.sh, scripts/ask_gemini_cdp.js) are well-structured, use proper variable quoting to prevent basic shell injection, and align perfectly with the stated purpose in SKILL.md. While the use of the Chrome DevTools Protocol (CDP) to interact with a live browser session is a high-privilege activity, it is used transparently here to automate AI distillation as described, with no evidence of data exfiltration or malicious intent.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If misused or invoked with the wrong URL, the helper could submit text through a logged-in browser page outside the intended Gemini workflow.
The helper can be pointed at an arbitrary app URL and will type and submit the prompt into the first matching textbox. In a logged-in browser, that is broader than a tightly scoped Gemini-only distillation tool.
const appUrl = arg('--app-url') || 'https://gemini.google.com/app'; ... await page.goto(appUrl, ...); ... await page.keyboard.type(prompt, { delay: 1 }); await page.keyboard.press('Enter');Restrict or validate the app URL to Gemini, use an isolated browser profile, and require explicit user approval before any browser-submitting action.
The skill may act through the user’s logged-in Google/Gemini browser session and submit prompt content under that account.
The documented workflow expects use of an existing authenticated browser session rather than a scoped API token, but the metadata declares no credential requirement and the artifacts do not define a dedicated account/profile boundary.
confirm Gemini is already logged in in the debug browser
Use a dedicated Chrome debug profile logged only into the intended Gemini account, and avoid running this against a normal browser profile with other active sessions.
Running the installer downloads third-party code that may change over time.
The setup script installs runtime dependencies from live package registries. This is purpose-aligned, but yt-dlp is unpinned and puppeteer-core uses a major-version range rather than a lockfile.
"$PY_DIR/bin/pip" install -q --upgrade pip yt-dlp ... npm install --silent puppeteer-core@24
Review the installer before running it, prefer pinned dependency versions or a lockfile, and install in a controlled environment if needed.
Clip transcripts or notes may be processed by Gemini or NotebookLM rather than staying fully local.
The intended workflow may send transcripts, notes, or prompt files to external AI services. This is aligned with the skill’s purpose, but users should be aware of the data boundary.
If captions are missing but a browser AI session is available: use Gemini ... Multi-source/theme synthesis: NotebookLM.
Do not send private or sensitive transcripts to external AI services unless the user explicitly agrees and the provider terms are acceptable.