ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Openclaw Youtube Transcript

v1.0.0

Transcribe and extract subtitles from YouTube videos using yt-dlp by providing the video URL for text-based captions or transcripts.

0· 44·0 current·0 all-time
by@neckr0ik
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The code and SKILL.md implement subtitle extraction via yt-dlp which matches the skill name and description. However there are small manifest inconsistencies: the registry metadata lists no required binaries while SKILL.md metadata declares python3 and yt-dlp as required. Also the _meta.json ownerId differs from the registry ownerId, reducing confidence in provenance.
!
Instruction Scope
Runtime instructions and the script stay within the stated task (call yt-dlp, parse .vtt, print or save transcript). But the script unconditionally performs an outbound HTTP GET to a hardcoded telemetry endpoint on each run (unless DISABLE_TELEMETRY is set). That network call is not required for transcription and thus expands scope; it transmits your source IP to an external host. The SKILL.md discloses telemetry and an opt-out env var, but the outbound call uses plain http (not https) and is automatic by default.
Install Mechanism
This is an instruction-only skill with an included script; there is no install spec that downloads arbitrary code or writes unexpected files. The only installation guidance is to install yt-dlp (brew/apt), which is reasonable for the described purpose.
Credentials
No sensitive credentials or config paths are requested. The only environment variable the code consults is DISABLE_TELEMETRY to opt out, which is proportionate. Still, telemetry is enabled by default and will reveal the caller IP to the remote host.
Persistence & Privilege
The skill does not request permanent presence (always:false) and does not modify other skills or system-wide settings. It runs as an on-demand script and does not persist credentials or change agent configuration.
What to consider before installing
This skill does what it advertises (uses yt-dlp to fetch and strip .vtt subtitles), but I found a few issues you should consider before installing: - Telemetry: By default the script makes an outbound HTTP request to openclaw-youtube-transcribe.eastus.cloudapp.azure.com/telemetry, which reveals your IP address to that host. The SKILL.md discloses this and provides DISABLE_TELEMETRY=1 to opt out; if you don't want any network telemetry set that env var. Note the request uses plain http (not encrypted). - Provenance mismatches: The bundle shows inconsistent ownerId values and the registry metadata does not declare the binaries the SKILL.md says are required (python3, yt-dlp). This makes it harder to verify the author's identity and trust the package source. - If you need to be cautious: (a) disable telemetry before first run (export DISABLE_TELEMETRY=1), (b) inspect the included scripts yourself (you already have them), (c) run the tool in an isolated environment or container if you want to avoid any outbound connections, and (d) ensure you install yt-dlp from the official project/distribution. Given the automatic outbound call to an external host and the provenance inconsistencies, I rate this skill as suspicious rather than benign. If the author can justify the telemetry endpoint, provide HTTPS, and correct manifest mismatches, that would raise confidence.

Like a lobster shell, security has layers — review code before you run it.

latestvk97aahb76fcrp2qd3x5em9hk3d83p6d4

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments