Skillv1.0.0

ClawScan security

Zight - video instructions capability for agents · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignFeb 27, 2026, 3:37 PM

Verdict: Benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's code, instructions, and declared requirements are consistent with its stated purpose: fetching a Zight share page and extracting metadata and captions into JSON; it does not request extra credentials or install anything unusual.
Guidance: This skill appears coherent and limited to extracting metadata/transcripts from Zight share links. Before installing, consider: 1) the skill will fetch any URLs embedded in the Zight page (captions_url), so if your agent runs in an environment with access to internal hosts that could be exposed via attacker-controlled pages, enable network restrictions or review fetched URLs; 2) the SKILL.md asks the agent to ask for confirmation before using extracted step-by-step instructions — ensure your agent enforces that confirmation and won't autonomously execute actions derived from transcripts; and 3) if you need stricter controls, run this skill in a sandboxed environment or review outputs before downstream automation.

Purpose & Capability: okThe name/description, SKILL.md, and skill.py all describe the same behavior: HTTP-first scraping of a Zight share URL to extract store JSON, stream links, and VTT captions. No unrelated credentials, binaries, or install steps are requested.
Instruction Scope: noteRuntime instructions and code limit actions to fetching the provided Zight URL and any captions URL discovered in that page, parsing JSON, and converting VTT to text. Note: the skill will follow the captions_url discovered in the page (an arbitrary URL); if the agent environment has access to internal networks this could be used for SSRF-style access. The SKILL.md contains a sensible confirmation rule for transcripts; enforcement of that rule depends on the agent, not this extractor.
Install Mechanism: okNo install spec and no external packages are required. This is effectively an instruction-only skill (a small Python extractor included), so nothing is downloaded from untrusted URLs during install.
Credentials: okThe skill requests no environment variables, credentials, or config paths. Its network usage is proportional to its purpose (fetching the user-supplied share URL and any captions URL exposed by that page).
Persistence & Privilege: okalways is false and the skill does not attempt to modify other skills or system configuration. It can be invoked autonomously by agents (default), which is normal for skills; no elevated persistence is requested.