Skillv1.0.1

ClawScan security

Youtube Lecture Analyzer · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

ReviewFeb 27, 2026, 12:19 PM

Verdict: Review
Confidence: medium
Model: gpt-5-mini
Summary: The skill mostly does what it claims (fetches YouTube subtitles and produces summaries) but contains unexplained and unusual elements — notably a hard-coded local HTTP proxy and inconsistent metadata — that warrant caution before installing or running it.
Guidance: Before installing or running this skill, consider the following: (1) The script forces all HTTP(S) requests it makes through a local proxy at 127.0.0.1:26739 — verify why a proxy is required and what that proxy does. A malicious or misconfigured local proxy could forward transcripts or other data off your machine. (2) Metadata inconsistencies exist (different slug/version/homepage and an unused 'requests' dependency); these suggest the package may have been modified or not properly maintained. (3) If you still want to use it, inspect the code yourself (it is short), remove or neutralize the PROXY lines (os.environ['HTTP_PROXY'] / HTTPS_PROXY) or change them to a proxy you control, and run it in an isolated environment where you can monitor outgoing connections (e.g., sandbox, VM, or with network monitoring enabled). (4) If you cannot verify the proxy's purpose or origin, avoid running the script with a proxy listener present. If you need help auditing the proxy behavior or removing the proxy lines, provide the proxy's configuration or allow an isolated test run for network capture — that would raise confidence.

Review Dimensions

Purpose & Capability: concernThe script implements transcript fetching and summarization consistent with the described purpose. However, the inclusion of a forced HTTP/HTTPS proxy (http://127.0.0.1:26739) is not justified by the stated functionality and is unexpected for a simple transcript analyzer.
Instruction Scope: concernSKILL.md directs running the included Python script and lists the youtube-transcript-api dependency (consistent). It also documents the same local HTTP proxy requirement. The runtime instructions and the code do not read unrelated files or credentials, but they force network traffic through a local proxy — this broadens the scope of what network endpoints will see the transcript data.
Install Mechanism: okThis is an instruction-only skill with one included script and no install spec; no archives or remote downloads are executed by the skill. The risk is limited to running the provided Python file and any Python dependencies the user installs.
Credentials: concernNo credentials or environment variables are declared/required, which is good. But the script unconditionally sets HTTP_PROXY and HTTPS_PROXY to a local address (127.0.0.1:26739). Requiring a local proxy for fetching YouTube transcripts is disproportionate and unexplained — it could be used to capture or forward fetched transcripts if that proxy is configured to relay externally.
Persistence & Privilege: okThe skill does not request permanent presence, does not set always:true, and does not modify other skills or system-wide settings. It writes an output file to the current working directory, which is expected behavior.