ClawHub
Back to skill
v0.1.1

Quark Subtitle Rescue

ReviewClawScan verdict for this skill. Analyzed May 1, 2026, 8:19 AM.

Analysis

This skill has a clear subtitle-recovery purpose, but it asks the agent to run external Quark scripts with a Quark login cookie and bulk-change cloud folders, so users should review it carefully before installing.

GuidanceBefore installing, verify the separate quark_subtitle_tool code yourself, use a limited Quark session if possible, confirm the exact folder scope, run in small batches, and require approval before any rollback or delete operation.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Agentic Supply Chain Vulnerabilities
SeverityMediumConfidenceHighStatusConcern
SKILL.md
Confirm tool root exists: `quark_subtitle_tool/`... Run: `python quark_subtitle_tool/batch_subtitle_runner.py`

The primary operational scripts live in a separate local tool directory, while the reviewed file manifest only includes the skill docs and scripts/report_progress.py. The code that performs the account-changing work is therefore outside the supplied artifact set.

User impactThe agent may execute unreviewed local Python code with access to the Quark cookie and the user's cloud files.
RecommendationOnly run this skill with a trusted, pinned, reviewed quark_subtitle_tool installation; ideally include or version-pin the required scripts and document their provenance.
Tool Misuse and Exploitation
SeverityMediumConfidenceHighStatusConcern
SKILL.md
User asks for **batch subtitles across many Quark subfolders**... If wrong-match batch is found, rollback before continuing.

The skill's intended workflow includes bulk cloud-folder mutation and rollback behavior. Although this matches the purpose, the artifacts do not clearly require dry-run mode or explicit user confirmation before uploads or rollback/delete actions.

User impactA mistaken target path or wrong-match batch could upload incorrect subtitles or trigger cleanup across many Quark folders.
RecommendationRequire explicit user approval for the target root, each bulk upload stage, subtitle-language fallback, and any rollback/delete action; prefer small batches and dry-run/preview output where available.
Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse
SeverityHighConfidenceHighStatusConcern
SKILL.md
Ensure config exists: `~/.config/quark_subtitle.json` with valid `cookie`.

This asks the agent to use a Quark account session cookie. That is high-impact account authority, especially because the workflow performs bulk uploads and rollback actions, and the registry metadata does not declare a credential or config-path requirement.

User impactIf the cookie is broad or mishandled, the workflow can act as the user in Quark and change many cloud files.
RecommendationUse only a trusted, limited-scope Quark session if possible, confirm the exact target folder before running, rotate/revoke the cookie after use, and declare the credential/config requirement in the skill metadata.