Skills
skills/eat-pray-ai/yutu/youtube-thumbnail/Gen Agent Trust Hub

youtube-thumbnail

Pass

Audited by Gen Agent Trust Hub on Mar 26, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill invokes the yutu CLI tool to perform YouTube thumbnail operations, specifically setting thumbnails for video IDs.
  • [EXTERNAL_DOWNLOADS]: Instructions are provided to install the yutu CLI through several standard package managers (NPM, Homebrew, Winget, and Go) targeting the author's own repositories (@eat-pray-ai/yutu and github.com/eat-pray-ai/yutu).
  • [DATA_EXFILTRATION]: The skill requires access to YouTube API credentials (client_secret.json) and cached tokens (youtube.token.json) to function, which is the standard security model for OAuth-based API interactions with Google services.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 26, 2026, 08:21 PM