Trust Assessment
youtube received a trust score of 92/100, placing it in the Trusted category. This skill has passed all critical security checks and demonstrates strong security practices.
SkillShield's automated analysis identified 2 findings: 0 critical, 0 high, 1 medium, and 1 low severity. Key findings include Broad YouTube OAuth Scope Requested, OAuth Tokens Stored Using Python `pickle` Module.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on February 14, 2026 (commit 13146e6a). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings2
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| MEDIUM | OAuth Tokens Stored Using Python `pickle` Module The skill stores OAuth tokens (access and refresh tokens) in a `.pickle` file (`token.pickle` or `token.<account>.pickle`). Deserializing data with `pickle.load()` from an untrusted source can lead to arbitrary code execution. While the `token.pickle` file is generated by the skill itself and not directly from user input, an attacker with local file system access could potentially replace this file with a malicious payload, leading to code execution when the skill attempts to load the token. This represents a local privilege escalation vector. Consider using a more secure serialization format for storing sensitive data like OAuth tokens, such as JSON or encrypted files, especially if the skill might run in environments where local file integrity cannot be guaranteed. If `pickle` must be used, ensure strict file permissions on the `CONFIG_DIR` and token files to prevent unauthorized modification. | LLM | scripts/youtube.py:60 | |
| LOW | Broad YouTube OAuth Scope Requested The skill requests the `https://www.googleapis.com/auth/youtube` OAuth scope, which grants full read/write access to a user's YouTube data, including managing videos, playlists, and subscriptions. While some commands like 'liked' might require write access, many others (e.g., search, list, get video details) could potentially function with more restricted scopes like `youtube.readonly`. Requesting a broader scope than strictly necessary increases the potential impact if the access token is compromised. Review the required OAuth scopes. If the skill's functionality can be achieved with more granular or read-only scopes for certain operations, consider requesting those instead. For example, use `youtube.readonly` for search/list operations and only request broader scopes when write access is explicitly needed. | LLM | scripts/youtube.py:28 |
Scan History
Embed Code
[](https://skillshield.io/report/f98a95ff41405338)
Powered by SkillShield