Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Download AIO
v1.0.0Download videos, audio, playlists, subtitles, and thumbnails from ANY platform (YouTube, TikTok, Instagram, Facebook, Twitter/X, Twitch, Vimeo, SoundCloud, R...
⭐ 0· 26·0 current·0 all-time
byMCB AI@mcbaivn
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
Name/description match the instructions: the skill is a wrapper around yt-dlp to download media and (when small) send it to Telegram. Commands and options in references/*.md align with yt-dlp usage and the stated features.
Instruction Scope
SKILL.md instructs the agent to run PowerShell install/check scripts (scripts/install.ps1, scripts/check.ps1, scripts/find-python.ps1) and to use yt-dlp options including --cookies-from-browser. However, the distributed package does not include the scripts directory or those .ps1 files (file manifest lists docs only). Also, instructions propose using --cookies-from-browser which will cause access to browser cookie stores (sensitive) — this is outside mere downloading and can expose credentials. The auto-send-to-Telegram flow uses the agent's message tool (expected) but you should confirm which Telegram account/channel will be used.
Install Mechanism
There is no formal install spec bundled with the skill (instruction-only). The docs tell users to run scripts that would install Python packages and ffmpeg via pip/Chocolatey, but those scripts are not present in the package. That mismatch is a red flag: the skill promises an auto-install but doesn't ship the code to do it. Running ad-hoc installer commands from docs (if copy-pasted) would still install networked binaries and write to disk — review any install script before running.
Credentials
The skill declares no required environment variables or credentials (ok), but its instructions encourage using --cookies-from-browser chrome to access logged-in content. That causes client-side browser cookie access (sensitive). It also copies files into the agent workspace path ($env:USERPROFILE\.openclaw\workspace) which is expected for sending, but you should confirm the message tool's configured channels. Overall, requested/encouraged access to cookies and local installs is disproportionate to a passive 'download' description unless the user explicitly wants logged-in/private content.
Persistence & Privilege
The skill does not request always:true and is user-invocable only. It does instruct the user to copy the skill into the agent skills directory (standard). It does not request system-wide config changes or other skills' credentials.
What to consider before installing
This skill appears to be a friendly wrapper around yt-dlp, but there are two practical concerns you should address before installing or running it:
1) Missing installer scripts: The README and SKILL.md instruct you to run scripts/install.ps1, check.ps1, and find-python.ps1, but the package you received does not include a scripts/ folder or those .ps1 files. Do not run random install commands copied from the docs until you obtain and inspect the actual scripts. Ask the publisher for the missing scripts or a verified installer, and review them to ensure they don't run unexpected commands.
2) Sensitive access: The skill encourages using --cookies-from-browser chrome to download private content. That gives yt-dlp access to browser cookies (which can include login tokens). Only use that option if you understand the privacy implications and trust the environment. Also confirm which Telegram account/channel the agent's message tool will use before allowing automatic uploads.
Other practical tips: if you want to try it, run it in a sandboxed account or VM, manually run and inspect any installer code, and keep yt-dlp/ffmpeg installs limited to user scope. If you cannot obtain the missing scripts for review, classify this package as incomplete/untrusted.Like a lobster shell, security has layers — review code before you run it.
downloadvk975jn9gj98tzvbjdnp22p6rch849pbplatestvk975jn9gj98tzvbjdnp22p6rch849pbpmcbaivk975jn9gj98tzvbjdnp22p6rch849pbpyoutubevk975jn9gj98tzvbjdnp22p6rch849pbp
License
MIT-0
Free to use, modify, and redistribute. No attribution required.