video-preview
Warn
Audited by Gen Agent Trust Hub on May 12, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONREMOTE_CODE_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The instruction to run
uvx videoclaw --helptriggers the automatic download and installation of thevideoclawpackage from the Python Package Index (PyPI) if it is not already present on the system. - [REMOTE_CODE_EXECUTION]: The use of
uvx(a tool runner) allows for the immediate execution of remote code downloaded from a public package registry without prior source verification or manual installation by the user. - [COMMAND_EXECUTION]: The skill executes shell commands using the
videoclawbinary, which can interact with the local file system based on the provided<file_path>argument.
Audit Metadata