warn
suspicious.install_untrusted_source
- Location
- _meta.json:11
- Finding
- Install source points to URL shortener or raw IP.
Youtube Lecture Analyzer
AdvisoryAudited by Static analysis on May 10, 2026.
Overview
Detected: suspicious.install_untrusted_source
Findings (1)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
NoteHigh Confidence
ASI04: Agentic Supply Chain VulnerabilitiesWhat this means
Installing or running the skill may depend on whatever versions of these packages are available in the user's environment.
Why it was flagged
The skill relies on external Python packages that are expected for YouTube transcript access, but the provided artifacts do not pin versions or include a lockfile.
Skill content
"dependencies": ["youtube-transcript-api", "requests"]
Recommendation
Install dependencies from trusted package sources and consider pinning reviewed versions if using this in a sensitive environment.
NoteHigh Confidence
ASI07: Insecure Inter-Agent CommunicationWhat this means
A local proxy could observe or mediate the YouTube transcript requests and returned caption data for videos the user analyzes.
Why it was flagged
The script routes its HTTP and HTTPS requests through a fixed localhost proxy. This is disclosed in SKILL.md and _meta.json, but the local proxy is outside the script's review scope.
Skill content
PROXY = "http://127.0.0.1:26739"; os.environ['HTTP_PROXY'] = PROXY; os.environ['HTTPS_PROXY'] = PROXY
Recommendation
Use the skill only when the localhost proxy is expected and trusted, or remove/change the proxy setting before running it.
NoteHigh Confidence
ASI06: Memory and Context PoisoningWhat this means
Transcript content is saved on disk in the current working directory and may remain after the task completes.
Why it was flagged
The script writes a local report containing the generated summaries and up to 10,000 characters of the fetched transcript.
Skill content
output_file = f"lecture_analysis_{transcript_data['video_id']}.txt" ... f.write(transcript_data['full_text'][:10000] + "...")Recommendation
Run it in an appropriate directory and delete the generated report if the transcript should not be retained.
NoteHigh Confidence
ASI09: Human-Agent Trust ExploitationWhat this means
Users may receive a generic summary that sounds analytical but may not fully support the promised key points, evidence, or actionable insights.
Why it was flagged
The implemented summary is keyword/template-based rather than the detailed evidence-backed analysis described in SKILL.md.
Skill content
sample = text[:800].lower() ... elif 'business' in sample or 'money' in sample: zh_summary += "讲座涉及商业策略和财富积累的内容。"
Recommendation
Treat the output as a draft and verify important claims against the transcript before using it for writing, teaching, or decision-making.