← Back to Skills Marketplace
Yt Dlp Download Skill
by
wangxiaolei
· GitHub ↗
· v1.0.1
· MIT-0
149
Downloads
0
Stars
0
Active Installs
2
Versions
Install in OpenClaw
/install yt-dlp-download-skill
Description
yt-dlp-powered downloader for YouTube, Bilibili, X (Twitter), TikTok/Douyin, and more. Given a video URL, download video (720p/1080p/best), extract MP3/audio...
Usage Guidance
This skill appears to do what it claims (use yt-dlp to download media), but it includes a helper script that builds a shell command and runs it via eval without validating URLs. That creates a command-injection risk: a maliciously crafted URL could cause arbitrary commands to run. Before installing or enabling this skill:
- Inspect or replace scripts/download.sh. Prefer invoking yt-dlp with an argument array (no eval) or use bash exec with properly quoted parameters. Validate the URL scheme (http/https) and reject or sanitize unexpected characters (quotes, semicolons, backticks).
- If you still want to use it, do not enable autonomous invocation for this skill (require user confirmation before any download), or run it in a strict sandbox/container.
- Be cautious about the '--cookies-from-browser' behavior: it can access browser cookies if yt-dlp can read them — only use when you understand and consent to that.
- If you lack the ability to audit/patch the script, prefer running yt-dlp manually or using an alternative skill with safer command invocation. If you proceed, apply the minimal-privilege principle and only enable the skill for trusted users/contexts.
Capability Analysis
Type: OpenClaw Skill
Name: yt-dlp-download-skill
Version: 1.0.1
The skill provides legitimate video downloading functionality via yt-dlp but contains a shell injection vulnerability in 'scripts/download.sh' due to the use of 'eval' on unsanitized input variables ($URL and $DOWNLOAD_PATH). While the 'SKILL.md' and 'skill.yaml' instructions explicitly advise the AI agent to validate URLs and avoid arbitrary shell execution, the helper script itself is architecturally flawed. No evidence of intentional malice, data exfiltration, or persistence was found.
Capability Assessment
Purpose & Capability
Name, description, required binaries, and permissions align with a downloader built around yt-dlp and ffmpeg. Requesting shell, filesystem, and network access is expected for downloading and saving media.
Instruction Scope
The SKILL.md instructs the agent to 'validate URL scheme' and 'construct safe commands', but the included scripts/download.sh does not validate or sanitize the URL and uses eval to execute the assembled command string. This mismatch creates a realistic command-injection vector if an attacker or malicious input supplies a crafted URL. The SKILL.md's guidance about avoiding arbitrary shell execution is not enforced by the script.
Install Mechanism
Installers declared (uv package for yt-dlp and Homebrew formula for ffmpeg on macOS) are reasonable and traceable. 'uv' appears to be a package installer (pipx/uv style) rather than an arbitrary URL download. No extracted arbitrary archive URLs or personal servers are used.
Credentials
No environment variables or unrelated credentials are requested. Declared requirements (yt-dlp and optionally ffmpeg) match the stated functionality.
Persistence & Privilege
always is false and the skill has no config paths requiring broad system access. However, the skill is granted shell/filesystem/network permissions (necessary for its function) — combined with the command-execution practice in the script this increases the blast radius if untrusted inputs are processed or the agent is permitted autonomous execution.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install yt-dlp-download-skill - After installation, invoke the skill by name or use
/yt-dlp-download-skill - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.1
- Updated description to clarify playlist downloading, subtitle language selection, and automatic audio/video merging.
- Improved clarity around supported sites and output options in metadata and description.
- No changes to core logic or workflow; documentation improvements only.
v1.0.0
- Initial release of yt-dlp-download-skill
- Download videos from YouTube, Bilibili, Twitter/X, TikTok/Douyin, and more via yt-dlp
- Supports video download, MP3 audio extraction, subtitle fetching, and quality selection (720p/1080p/best)
- Includes safety checks for URLs and output paths
- Provides troubleshooting tips for common issues like missing dependencies and video access errors
Metadata
Frequently Asked Questions
What is Yt Dlp Download Skill?
yt-dlp-powered downloader for YouTube, Bilibili, X (Twitter), TikTok/Douyin, and more. Given a video URL, download video (720p/1080p/best), extract MP3/audio... It is an AI Agent Skill for Claude Code / OpenClaw, with 149 downloads so far.
How do I install Yt Dlp Download Skill?
Run "/install yt-dlp-download-skill" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Yt Dlp Download Skill free?
Yes, Yt Dlp Download Skill is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Yt Dlp Download Skill support?
Yt Dlp Download Skill is cross-platform and runs anywhere OpenClaw / Claude Code is available (darwin, linux, win32).
Who created Yt Dlp Download Skill?
It is built and maintained by wangxiaolei (@fatelei); the current version is v1.0.1.
More Skills