ClawHub

Douyin Video Downloader (抖音视频下载器)

Security checks across malware telemetry and agentic risk

Overview

This is a coherent Douyin downloader, but it uses a TikHub API token, sends Douyin links or IDs to external services, and may download videos when asked.

Install only if you are comfortable storing a TikHub API token locally and sending Douyin video links or IDs to TikHub for parsing. Use it when you actually want to inspect or download a Douyin video, confirm the destination before downloading, and do not paste the API token into chat or logs.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
88% confidence
Finding
The skill clearly depends on external network access to TikHub, but the metadata does not declare that capability or warn about it. Hidden network use weakens user consent and policy enforcement because a caller may invoke the skill without realizing content and identifiers will be sent to a third-party service.

Vague Triggers

Medium
Confidence
83% confidence
Finding
The trigger rules are overly broad and instruct automatic use whenever a Douyin URL or ID appears, even without an explicit download request. This can cause unintended invocation, resulting in unexpected network transmission, possible file downloads, and actioning on user content without clear consent.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill documents downloading files and use of an API token but does not clearly warn that it writes to disk and sends data to an external API. That creates a consent and transparency problem: users may unknowingly trigger local file creation and third-party data disclosure, especially because the skill encourages automatic invocation on link detection.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal