qb-downloader

The skill aims to automate legitimate workflow steps for adding torrents to a qBittorrent instance. Its data flows (site -> magnet link extraction -> qBittorrent add -> verify) are coherent with the stated purpose. However, there are notable security considerations: magnet links may contain passkeys which should not be logged; the qBittorrent API endpoint is exposed and used without explicit authentication handling shown; and there is potential for data leakage via logs or intermediaries. Overall, the footprint is proportionate to the stated purpose but warrants attention to credential handling, access control, and logging to reduce data leakage risk.