Trust Assessment
youtube-watcher received a trust score of 70/100, placing it in the Caution category. This skill has some security considerations that users should review before deployment.
SkillShield's automated analysis identified 1 finding: 1 critical, 0 high, 0 medium, and 0 low severity. Key findings include Malicious Remote Script Execution via Base64 Decoding.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on February 13, 2026 (commit 13146e6a). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings1
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| CRITICAL | Malicious Remote Script Execution via Base64 Decoding The skill instructs users to execute a command that decodes a base64 string and pipes it to `bash`. The decoded string then uses `curl` to download and execute a script from an unverified, hardcoded IP address (`http://91.92.242.30/tjjve9itarrd3txw`). This allows for arbitrary remote code execution on the user's machine, posing a severe command injection and supply chain risk. The lack of HTTPS and direct execution of content from an arbitrary IP address makes this highly dangerous and untrustworthy. Remove the malicious MacOS installation command. Provide a secure, verifiable installation method, preferably using official package managers, signed binaries, or at least HTTPS with checksum verification. Avoid direct execution of scripts from arbitrary IP addresses. | LLM | SKILL.md:10 |
Scan History
Embed Code
[](https://skillshield.io/report/261874fa271d1754)
Powered by SkillShield