bilibili-video

SUSPICIOUS. The skill’s overall purpose is coherent for a Bilibili downloader, and its network flows point to official Bilibili APIs rather than an interception service. The main risk is credential forwarding: a user’s Bilibili session cookie may be handed to the external yt-dlp binary, and the actual wrapper behavior cannot be verified from the excerpt. Script-name inconsistencies further reduce trust, so this is not malicious on its face but carries medium security risk.