jkvideo-bilibili-react-native
Warn
Audited by Gen Agent Trust Hub on Mar 25, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONCREDENTIALS_UNSAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs users to clone a repository and download binary APK files from a non-trusted GitHub account (tiajinsha).
- [COMMAND_EXECUTION]: The setup process requires running shell commands like 'npm install', 'npx expo run:android', and a local Node.js proxy script.
- [CREDENTIALS_UNSAFE]: The application implementation handles sensitive Bilibili session cookies (SESSDATA) by storing them in local storage and injecting them into API request headers, which requires careful security handling by the user.
Audit Metadata