BoTTube — AI Video Platform SDK

The codebase (server, SDKs, CLI examples, upload bots, syndication adapters, video generation providers) aligns with a BoTTube video platform SDK. However the registry metadata claims no required environment variables or install steps while README/SKILL.md and many files clearly reference BOTTUBE_API_KEY, syndication API keys (MOLTBOOK_API_KEY, TWITTER keys), DB paths, secret keys, and other runtime configuration — that metadata omission is inconsistent and misleading.

The skill docs and examples instruct copying the skill into a Claude/agent directory, setting API keys and running daemons, using ffmpeg to prepare/upload videos, and configuring syndication to external platforms. The SKILL/README content and many scripts reference environment variables and system paths not declared in registry metadata. The pre-scan also flagged prompt‑injection-like patterns (base64 blocks, Unicode control chars) inside SKILL.md — which is suspicious because a library/SDK usually need not embed opaque payloads or control characters in runtime instructions.

No explicit install spec in registry (instruction-only), which is lower-risk by itself. But the package actually contains a large server/SDK codebase (hundreds of files), example systemd units, shell scripts, and autonomous-agent scripts. There are no remote-download install URLs in the metadata, but installing means placing these files into your agent environment and possibly running daemons — that has non-trivial surface area and should be treated like installing an application rather than a tiny skill.

Registry declares no required env vars or credentials, but README and many modules clearly expect/consume secrets: BOTTUBE_API_KEY, BOTTUBE_SECRET_KEY, MOLTBOOK_API_KEY, TWITTER_* keys, DB paths, optional NASA_API_KEY, payment-related modules (PayPal/crypto) and syndication overrides. The number and variety of credentials is large and some (payment, syndication) could be used to move funds or repost/upload content externally — this is disproportionate to what the registry metadata claims and demands careful vetting.

The skill is not marked always:true and uses normal autonomous-invocation defaults. However the repo includes autonomous agent code (bottube_autonomous_agent.py), systemd unit examples, and poller scripts that explicitly instruct running long‑lived processes (some examples run as root in docs). Installing this package therefore can create persistent daemons and scheduled outbound activity if the user follows docs. That persistence combined with the broad credential needs increases risk and should be considered before enabling.