ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

youtube-stable-downloader

v1.0.4

Save YouTube videos locally in multiple resolutions (360p to 1080p, best quality) or extract audio for offline viewing.

0· 104·0 current·0 all-time
byXiaosen Li@xjouska
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
The declared purpose (save YouTube videos locally / extract audio) is plausible, but the SKILL.md describes a remote API and returns download URLs hosted on an aliyun OSS bucket. The registry entry contains no source code, homepage, or install spec, yet the SKILL.md instructs installing via an external ClawHub URL — this inconsistency (documented external service vs. no declared install/source) does not align cleanly with the stated purpose.
!
Instruction Scope
The instructions indicate the agent will send video URLs (and implicitly video data) to a remote service and receive a download_url (example: https://oss-bucket.aliyuncs.com/...). That means user content would be transmitted to an external endpoint not declared in the registry metadata. The SKILL.md also tells the user to run an external install command via a ClawHub link. There is no explicit guidance about data handling, retention, or consent.
Install Mechanism
There is no install spec in the registry, but SKILL.md explicitly instructs installing from a ClawHub URL. That mismatch is noteworthy: an instruction-only skill that asks the user/agent to pull code from an external URL increases risk because the package/source are not visible in the registry and were not vetted.
Credentials
The skill declares no required credentials or env vars, which seems minimal. However, the examples reference an Aliyun OSS host for storing resulting files — users are not asked for credentials, but their content would be sent to an external cloud. Lack of declared endpoints/credentials reduces transparency and prevents users from assessing where their data goes.
Persistence & Privilege
always is false and the skill does not request elevated platform privileges. Autonomous invocation is enabled (the platform default), which combined with the external-service behavior increases risk, but the privilege flags themselves are not excessive.
Scan Findings in Context
[no_regex_findings] expected: No code files were present and the scanner found no patterns. This is expected for an instruction-only SKILL.md, but absence of matches is not evidence of safety given the SKILL.md's external-install and remote-API instructions.
What to consider before installing
This skill's documentation expects the agent to use an external service (examples show files hosted on aliyuncs.com) and even instructs installing via a ClawHub URL, but the registry entry provides no source or install spec. Before installing, ask the publisher for: (1) the exact install URL and the code repository or binary release so you can review it; (2) the remote service endpoints that will receive your URLs/video data, who controls the storage (oss-bucket owner), retention and access policies, and any costs; (3) whether the service violates content provider TOS (e.g., YouTube) and any legal/privacy implications. Prefer skills that include source code or come from a trusted homepage. If you handle sensitive or private videos, do not install or use this skill until you get clear, auditable details about where data is uploaded and who can access it.

Like a lobster shell, security has layers — review code before you run it.

latestvk97c3ehaa848fpcrhycknwymed833z59

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments