Skillv1.0.0

ClawScan security

bilibili-yt-dlp · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

ReviewMar 13, 2026, 12:15 AM

Verdict: Review
Confidence: medium
Model: gpt-5-mini
Summary: Skill instructions match the stated purpose (downloading Bilibili via yt-dlp + ffmpeg) but they reference browser cookie extraction and browser actions without declaring that sensitive access, which is a proportionality/scope mismatch worth noticing before use.
Guidance: This skill appears to do what it says (use yt-dlp + ffmpeg to download Bilibili videos). Before installing or letting an agent run it, consider: 1) The SKILL.md suggests using --cookies-from-browser and browser actions — that can expose your browser cookies and logged-in sessions; only allow this if you trust the agent and understand which browser profile will be accessed. 2) If you prefer more control, install yt-dlp and ffmpeg yourself and run the shown commands manually rather than giving an agent permission to open pages or extract cookies. 3) Be aware of legal/terms-of-service implications for downloading content (especially paywalled content). 4) If you must use cookie-based auth, limit which browser/profile is used and avoid sharing full browser session data. If you want me to, I can point out exact command lines to run locally instead of enabling the skill to act autonomously.

Purpose & Capability: okName/description (download Bilibili with yt-dlp and ffmpeg) align with the instructions: yt-dlp and ffmpeg usage, format codes, and merge steps are all directly relevant.
Instruction Scope: noteInstructions are largely scoped to downloading and merging streams. However they include browser actions (open/close tab) and advise using --cookies-from-browser and reading window.__playinfo__ from the page — actions that access browser session data and could expose cookies or auth state. Those steps are related to the stated purpose but broaden what the agent will read/use (browser cookies and page JS).
Install Mechanism: okNo install spec in the registry; the SKILL.md recommends installing yt-dlp via pip and ffmpeg via package manager or official site — these are reasonable and expected for the stated functionality, and no arbitrary downloads or unknown URLs are provided.
Credentials: concernThe skill declares no required env vars or config paths but instructs use of --cookies-from-browser and browser console extraction. This implies access to browser cookie stores / session data that isn't declared as required credentials — a mismatch and a potential privacy/credential exposure risk.
Persistence & Privilege: okThe skill is instruction-only, has no install spec, does not request permanent presence (always:false). Autonomous invocation is allowed (platform default) but not by itself a red flag here.