link-resolver-engine
Security checks across malware telemetry and agentic risk
Overview
The skill appears to download Bilibili/Douyin videos as advertised, but it automatically contacts raw URLs and installs or changes local Python, browser, and FFmpeg components at runtime.
Install or run this only in an isolated, non-admin environment you are comfortable modifying. Expect it to install Python packages, Chromium, and possibly FFmpeg on first use, and only provide trusted Bilibili/Douyin links and safe download directories.
VirusTotal
67/67 vendors flagged this skill as clean.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A malicious or mistaken link could make the local agent contact unsupported, internal, or private-network URLs before the skill rejects them.
The code contacts and follows redirects for the raw user-supplied URL before confirming it is a supported Bilibili/Douyin host.
resp = requests.head(url, allow_redirects=True, timeout=timeout) ... parsed = urlparse(final_url) ... return "未知平台"
Validate scheme and host before any network request, allow only known Bilibili/Douyin short-link domains, block localhost/private IP ranges, and ensure redirects remain on allowed hosts.
First use may download and execute third-party package/browser code without a separate install review or pinned provenance.
The module performs unpinned dependency installation and browser installation at runtime/import time, despite the registry showing no install spec and only a Python binary requirement.
ensure_package.pip("requests"); ensure_package.pip("playwright"); ensure_package.pip("tf-playwright-stealth"); ensure_package.pip("yt-dlp"); subprocess.check_call([sys.executable, "-m", "playwright", "install", "chromium"])Move dependency setup to an explicit install specification, pin versions or provide a lockfile, declare Chromium/Playwright requirements, and require user approval before runtime installation.
Running the downloader can silently add a large executable dependency to the local system, with limited user control over version, source, or rollback.
The skill automatically confirms and runs an FFmpeg installer command during execution if FFmpeg is not already present.
subprocess.run(["ffdl", "install"], input="Y\n", text=True, check=True)
Ask for explicit approval before downloading executables, pin and verify FFmpeg sources/checksums, document install location, and prefer preflight setup over automatic runtime installation.
Changing setuptools/wheel in the active Python environment can break or alter other Python tools, skills, or agent sessions that share that interpreter.
The helper runs a forced reinstall of packaging tooling in the active interpreter when the module is imported, which is broader than needed for a video download task.
fix_setuptools_for_legacy_packages(); subprocess.check_call([sys.executable, "-m", "pip", "install", "--quiet", "--force-reinstall", "setuptools<=81.2.0", "wheel"])
Do not force-reinstall packaging tools on import; use a per-skill isolated environment, pin only required packages, and make environment changes explicit and reversible.