Skillv0.10.7-dev

ClawScan security

YouTube Caption · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignMar 14, 2026, 1:57 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's requirements, instructions, and install steps are consistent with a CLI that manages YouTube captions via OAuth; nothing requested appears unrelated to that purpose.
Guidance: This skill appears to be what it says: a wrapper around the yutu CLI for YouTube caption management. Before installing: (1) review the npm package and GitHub repo (@eat-pray-ai/yutu) to ensure you trust the publisher; (2) understand that you must provide OAuth client credentials and will grant YouTube API access — the tool will open a browser and write a local token file (youtube.token.json); keep those files private; (3) prefer installing with a trusted package manager or inspect the package contents before global install; and (4) if you are concerned about autonomous agent invocation, be aware the platform allows skills to be invoked by agents by default — you can restrict or review skill usage in your agent settings.

Review Dimensions

Purpose & Capability: okName/description match the requirements: the skill needs the yutu CLI, OAuth client secret/token files, and env vars for the yutu tool — all of which are appropriate for managing YouTube captions via the YouTube Data API.
Instruction Scope: okSKILL.md only instructs the agent to use the yutu CLI to list/insert/update/download/delete captions and to run the yutu auth flow to obtain an OAuth token; it does not ask the agent to read unrelated system files or exfiltrate data to unexpected endpoints. The auth flow will open a browser and save a local token (youtube.token.json), which is expected for OAuth.
Install Mechanism: noteInstall spec uses an npm package (@eat-pray-ai/yutu) which matches the GitHub homepage; this is a common, expected mechanism (moderate risk vs. system packages). The setup doc also documents alternative installation methods (brew/winget/go/releases) though only the node install is declared in the install spec — not harmful but a minor documentation/metadata mismatch to be aware of.
Credentials: okRequested env vars (YUTU_CREDENTIAL, YUTU_CACHE_TOKEN) and config paths (client_secret.json, youtube.token.json) directly map to OAuth client credentials and cached tokens required to call the YouTube API. The scope and number of credentials are proportionate to the described functionality.
Persistence & Privilege: okalways:false (no forced presence). The skill does not request elevated system-wide privileges or modification of other skills. It will rely on locally stored OAuth tokens created by the yutu auth flow, which is normal for a CLI tool.