Back to skill
Skillv0.10.7-dev
ClawScan security
YouTube Thumbnail · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 14, 2026, 2:13 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requirements and instructions align with its stated purpose (using the yutu CLI to set YouTube thumbnails); requested credentials and files are appropriate for OAuth-based YouTube access.
- Guidance
- This skill appears coherent: it wraps the yutu CLI and requires standard YouTube OAuth artifacts. Before installing, verify the origin and integrity of the @eat-pray-ai/yutu package (inspect the GitHub repo, npm package, and release artifacts), and ensure the OAuth client and token you provide have the minimal scopes needed. Avoid placing long-lived credentials in shared environments; prefer per-project credential files (client_secret.json / youtube.token.json) and review the token file contents before sharing. If you need higher assurance, install the tool from the repo's official releases and review its source code for unexpected network calls or telemetry.
Review Dimensions
- Purpose & Capability
- okName/description (set YouTube thumbnails) match the declared binary (yutu), required OAuth files (client_secret.json, youtube.token.json), and env vars (YUTU_CREDENTIAL, YUTU_CACHE_TOKEN). These are expected for a YouTube CLI that uses OAuth.
- Instruction Scope
- okSKILL.md and reference files only instruct installing/using the yutu CLI and performing OAuth auth flow (local redirect, token saved to youtube.token.json). They do not ask to read unrelated files, exfiltrate data, or call unexpected external endpoints.
- Install Mechanism
- noteInstall uses an npm package (@eat-pray-ai/yutu) which is reasonable for providing the yutu binary; npm packages are a moderate-risk supply chain vector compared with instruction-only skills. The included README also documents other distribution channels (brew/winget/go/releases) — not inherently problematic but verify the package and release source before installing.
- Credentials
- okRequested env vars and config paths (OAuth client secret and cached token) are expected and proportionate for authorizing against the YouTube Data API. The primary credential (YUTU_CREDENTIAL) matches the service purpose.
- Persistence & Privilege
- okSkill is not forced-always, does not request elevated agent-wide privileges, and is instruction-only (no code written by the skill). Autonomous invocation is enabled by default but not combined with other concerning flags.