Back to skill

Security audit

抖音下载器-douyin_downloader

Security checks across malware telemetry and agentic risk

Overview

This skill does what it claims: it downloads Douyin videos through TikHub using a user-provided API token, with no hidden persistence or unrelated behavior found.

Install only if you are comfortable using TikHub, storing a dedicated revocable TikHub token in ~/.openclaw/config.json, and sending Douyin video identifiers to TikHub. Keep the token private and check the downloaded MP4 location after use.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
83% confidence
Finding
The trigger phrases are broad everyday expressions such as '帮我下载这个视频', and the skill also activates on the mere presence of a Douyin link or modal_id. Overly broad triggers can cause unintended invocation, which is risky here because the skill may perform network requests and use a locally stored API token without the user deliberately choosing this specific skill.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill instructs users to place an API token in a local config file but does not warn that the token is sensitive, should not be shared, and may grant billable or account-bound access. In a downloader skill that performs external API calls, poor credential handling increases the risk of token leakage through backups, logs, screenshots, or overbroad file access by other tools.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.