Unpinned Dependencies
Low
- Category
- Supply Chain
- Content
jieba>=0.42.1 snownlp>=0.12.3 wordcloud>=1.9.3 pillow>=10.3.0
- Confidence
- 96% confidence
- Finding
- jieba>=0.42.1
Security audit
Security checks across malware telemetry and agentic risk
This skill appears to do what it says: fetch public Bilibili bullet comments and analyze them locally, with ordinary dependency and data-handling cautions.
Install only if you are comfortable running a local Python environment that downloads third-party packages. Use it for public Bilibili videos, choose the output directory deliberately, and review generated comment datasets and reports before sharing them.
jieba>=0.42.1 snownlp>=0.12.3 wordcloud>=1.9.3 pillow>=10.3.0
jieba>=0.42.1 snownlp>=0.12.3 wordcloud>=1.9.3 pillow>=10.3.0 numpy>=1.26.4
jieba>=0.42.1 snownlp>=0.12.3 wordcloud>=1.9.3 pillow>=10.3.0 numpy>=1.26.4
jieba>=0.42.1 snownlp>=0.12.3 wordcloud>=1.9.3 pillow>=10.3.0 numpy>=1.26.4
snownlp>=0.12.3 wordcloud>=1.9.3 pillow>=10.3.0 numpy>=1.26.4
64/64 vendors flagged this skill as clean.
No suspicious patterns detected.