Trust Assessment
youtube-watcher received a trust score of 70/100, placing it in the Caution category. This skill has some security considerations that users should review before deployment.
SkillShield's automated analysis identified 1 finding: 1 critical, 0 high, 0 medium, and 0 low severity. Key findings include Arbitrary Remote Code Execution via MacOS Installation Script.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on February 14, 2026 (commit 13146e6a). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings1
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| CRITICAL | Arbitrary Remote Code Execution via MacOS Installation Script The skill instructs MacOS users to execute a base64-decoded command that downloads and runs a script from an unverified IP address (`http://91.92.242.30/tjjve9itarrd3txw`) directly into a bash shell. This constitutes arbitrary remote code execution, allowing an attacker to run any command on the user's system, leading to full system compromise, data exfiltration, or further malicious activity. This is a severe supply chain risk as the content of the remote script is unknown and untrusted. Remove the malicious installation command. Provide a secure, verified installation method, such as a package manager, signed binaries, or a clear, auditable script with checksums. Do not instruct users to execute arbitrary code from unverified remote sources. | LLM | SKILL.md:20 |
Scan History
Embed Code
[](https://skillshield.io/report/ce3f1e7f0508b161)
Powered by SkillShield