Skillv1.0.0

ClawScan security

Youtube Watcher 1.0.0 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignApr 6, 2026, 12:17 AM

Verdict: Benign
Confidence: high
Model: gpt-5-mini
Summary: The skill does what it claims (fetches YouTube subtitles via yt-dlp and returns cleaned transcript text); its requirements and behavior are proportionate and consistent with that purpose.
Guidance: This skill is internally consistent: it runs the yt-dlp binary (which will fetch data from YouTube for any URL you provide), extracts subtitle (.vtt) files in a temporary directory, cleans them, and prints the transcript. Before installing, confirm you trust the source of yt-dlp (brew/pip) and that fetching transcripts from the provided videos is permitted in your environment (network access to YouTube, copyright/privacy considerations). Note the minor discrepancy between the registry install spec (brew) and the SKILL.md (also lists pip) — this only affects how yt-dlp is installed, not runtime behavior. If you need transcripts to stay local, be aware the script prints them to stdout but does not send them to any external service beyond YouTube itself.

Purpose & Capability: okName/description align with required binary yt-dlp and the included script. Asking for yt-dlp is expected for fetching YouTube subtitles; there are no unrelated credentials, files, or system paths requested.
Instruction Scope: okSKILL.md instructs running the included script to fetch transcripts and then summarizing or searching the returned text. The runtime script runs yt-dlp in a temporary directory, reads .vtt subtitle files, cleans them, and prints the text. It does not read unrelated files or environment variables, nor does it transmit transcripts to external endpoints.
Install Mechanism: noteInstall spec lists a brew formula for yt-dlp (reasonable). SKILL.md metadata also references a pip install option for yt-dlp; the registry-level install specification shown only lists brew. This mismatch is minor and not a security risk, but users should be aware yt-dlp will be installed by a package manager of their choosing.
Credentials: okThe skill requires no environment variables or credentials. The script only invokes yt-dlp and operates on a temporary directory; no secrets or unrelated service tokens are requested or used.
Persistence & Privilege: okalways is false and the skill does not request persistent/privileged presence or modify other skills/config. It runs only when invoked.