Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
MovieFetch
v0.1.0Download, track, and remove movies across Plex, Radarr, and qBittorrent from chat. Triggers on user requests like "get <movie>", "status of <movie>", or "rem...
⭐ 0· 87·0 current·0 all-time
bySerial Lazer@seriallazer
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
OpenClaw
Suspicious
medium confidencePurpose & Capability
Name/description and the included scripts align: they query Plex, Radarr, qBittorrent and TMDB to request, track, and remove movies. However, the registry metadata declares no required environment variables or primary credential, while the code and README clearly require multiple service credentials (RADARR_API_KEY, PLEX_TOKEN, QBIT_PASSWORD, TMDB_API_KEY). The omission in metadata is an inconsistency.
Instruction Scope
SKILL.md and skill.yaml instruct the agent to call the provided scripts and do only service-specific network calls. The runtime instructions do not ask the agent to read arbitrary host files or exfiltrate data to unknown endpoints. That said, SKILL.md/README expect environment variables (service URLs and API keys) which are not declared in the registry metadata; the instructions therefore rely on externally-provided secrets.
Install Mechanism
No install spec / remote downloads are present and all code is bundled with the skill. There is no brew/npm/URL-based installer to evaluate — the skill will run the included Python scripts, which is low install risk compared with fetching arbitrary code at install time.
Credentials
The code needs multiple sensitive environment variables (RADARR_API_KEY, PLEX_TOKEN, QBIT_PASSWORD, plus optional TMDB_API_KEY and service URLs). Those are appropriate for the claimed functionality, but the skill metadata does not declare them (primaryEnv none, required env none). Because secrets are required but not declared, permissioning and user expectations are mismatched — a clear proportionality/documentation issue.
Persistence & Privilege
The skill does not request 'always: true' and does not modify other skills or agent-wide settings. It can trigger Radarr to delete movie records (and Radarr can delete files), so it exercises destructive API actions against user services, but only via the provided service credentials — this is expected for a removal tool rather than an unexplained privilege escalation.
What to consider before installing
This skill's code appears to do exactly what the description promises (search Plex, add to Radarr, query qBittorrent, remove via Radarr), but the package metadata omits the environment variables and credentials the scripts actually require. Before installing: 1) Verify the skill's origin and review the included Python files (they are bundled) so you understand network calls made to your local services. 2) Expect to provide sensitive credentials (RADARR_API_KEY, PLEX_TOKEN, QBIT_PASSWORD, possibly TMDB_API_KEY); only supply them if you trust the skill and can secure those secrets (use scoped API keys and a secrets manager if available). 3) Note remove_movie triggers Radarr deletions (and Radarr may delete files) — test with non-destructive options first. 4) Ask the publisher to update the registry metadata/skill manifest to list required env vars and primary credential so permission prompts are accurate. 5) If unsure, run the tests in an isolated environment or with mock endpoints (the repo includes unit tests and a mock conftest) before exposing real credentials.Like a lobster shell, security has layers — review code before you run it.
automationvk971gra7kh1zr8ctyr9anm2nwh84h4edlatestvk971gra7kh1zr8ctyr9anm2nwh84h4edmediavk971gra7kh1zr8ctyr9anm2nwh84h4edmoviesvk971gra7kh1zr8ctyr9anm2nwh84h4edplexvk971gra7kh1zr8ctyr9anm2nwh84h4edqbittorrentvk971gra7kh1zr8ctyr9anm2nwh84h4edradarrvk971gra7kh1zr8ctyr9anm2nwh84h4edself-hostedvk971gra7kh1zr8ctyr9anm2nwh84h4ed
License
MIT-0
Free to use, modify, and redistribute. No attribution required.