Back to skill
Skillv1.0.2
VirusTotal security
tl;dw - YouTube Video Summarizer · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 29, 2026, 3:23 AM
- Hash
- 4e2778e874a6fa8562f2fde53301bc61dea5e51c717788f2a8aa3cf1f61ece00
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: tl-dw Version: 1.0.2 The skill is classified as suspicious due to two main security risks: the explicit instruction for the agent to handle and use sensitive `youtube_cookies.txt` files for authentication, and the `scripts/extract_transcript.py` script's use of `nocheckcertificate: True` in its `yt-dlp` configuration. This flag disables SSL certificate validation, making network connections vulnerable to Man-in-the-Middle attacks. While the skill's primary purpose is benign (YouTube summarization), these risky capabilities and security weakening are significant concerns.
- External report
- View on VirusTotal