Skills
skills/wlzh/skills/youtube-to-blog-post/Gen Agent Trust Hub

youtube-to-blog-post

Pass

Audited by Gen Agent Trust Hub on Apr 22, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The script automatically installs the 'yt-dlp' package using pip if it is not already present in the environment. This is a standard practice for Python-based media tools.
  • [COMMAND_EXECUTION]: The skill executes local shell commands such as 'hexo' (clean, generate, deploy) and 'git' (add, commit, push) to automate the blog publishing workflow. These operations are performed using secure subprocess calls with argument lists.
  • [DATA_EXPOSURE]: The script reads user-defined settings from a configuration file located at '~/.youtube-blog-config.json'. This is a standard method for managing local user preferences and paths without hardcoding them.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 22, 2026, 07:38 AM