Skillv1.0.0

ClawScan security

YouTube Watcher · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

ReviewFeb 11, 2026, 9:32 AM

Verdict: Review
Confidence: high
Model: gpt-5-mini
Summary: The skill's instructions claim to run a local Python script to fetch transcripts, but no code files are included and the README/metadata references installers that don't match the registry — this mismatch makes the package incoherent and worth caution.
Guidance: Do not install or enable this skill until the missing code is provided and reviewed. The SKILL.md tells the agent to run a local script (scripts/get_transcript.py) but the package contains no code files — this could be an accidental omission or indicate the skill expects out-of-band files. Before proceeding, ask the publisher for the script source or full repository, and review the script contents to ensure it only calls yt-dlp and processes transcripts (no secrets exfiltration or arbitrary shell exec). Confirm how yt-dlp will be installed (brew vs pip) and be aware the skill will need network access to contact YouTube; if you proceed, restrict the environment and inspect the script for any unexpected network endpoints or file accesses.

Review Dimensions

Purpose & Capability: concernThe declared purpose (fetch and read YouTube transcripts) legitimately requires a downloader like yt-dlp, which is requested. However, the SKILL.md expects a local script (python3 {baseDir}/scripts/get_transcript.py) to exist and be executed; no such script or other code files are present in the package manifest. That makes the skill unable to perform its task as provided and suggests missing or out-of-band components.
Instruction Scope: concernRuntime instructions explicitly tell the agent to execute a local Python script and then read its output. Because the script is not present, the instructions are incomplete. The instructions do not attempt to access unrelated system files or credentials, but they do assume ability to run local code (which could be arbitrary) and to access the network to fetch YouTube content.
Install Mechanism: noteRegistry install spec lists a Homebrew formula to install yt-dlp (reasonable for the declared purpose). The SKILL.md metadata also lists a pip install option for yt-dlp, but the registry metadata provided to you included only the brew install — a minor inconsistency. The install source (brew yt-dlp) is a standard release channel and not high-risk.
Credentials: okNo environment variables, credentials, or config paths are requested, which is proportional for a transcript-fetching tool. The only requirement is the yt-dlp binary, which fits the stated function.
Persistence & Privilege: okThe skill does not request always: true or other elevated persistence. It is user-invocable and allows autonomous invocation (platform default), which is expected for skills. No system-wide modifications are described.