Video Frames

AdvisoryAudited by Static analysis on Apr 30, 2026.

Overview

No suspicious patterns detected.

Findings (0)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

NoteHigh Confidence

ASI02: Tool Misuse and Exploitation

What this means

If the user or agent supplies an existing output path, that file may be overwritten.

Why it was flagged

The script intentionally invokes ffmpeg and uses -y, which overwrites the requested output file without prompting. This is purpose-aligned for frame extraction, but it affects local files.

Skill content

ffmpeg -hide_banner -loglevel error -y ... "$out"

Recommendation

Use a deliberate output path, preferably in a temporary or project-specific directory, and avoid pointing --out at important existing files.