instagram-caption-scraper

Security checks across malware telemetry and agentic risk

Overview

The skill mostly does what it claims, but it asks users to hardcode Instagram login credentials and documents an unsafe shell-style invocation with user-provided input.

Review before installing. Use it only for public Instagram posts unless the credential flow is redesigned. Do not put Instagram usernames or passwords directly into the script, and ensure OpenClaw invokes the URL as a quoted or structured argument rather than raw shell interpolation.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 89% confidence
Finding: The README advises users to add Instagram login credentials directly into the script to work around 403 errors, but provides no guidance on secure secret handling. This can lead users to hardcode credentials in source files that may be stored insecurely, committed to repositories, or exposed through logs and backups.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal