blossom-content-addressed-url-filtering

Enhances media processing by fixing URL extraction failures for content-addressed storage, ensuring all video URLs are processed correctly.

Install this skill

84/100

Security score

The blossom-content-addressed-url-filtering skill was audited on May 14, 2026 and we found 8 security issues across 2 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 83

Template literal with variable interpolation in command context

SourceSKILL.md

83	let videoUrl = `https://${CDN_DOMAIN}/${sha256}.mp4`;

medium line 86

Template literal with variable interpolation in command context

SourceSKILL.md

86	let videoUrl = `https://${CDN_DOMAIN}/${sha256}`;

low line 22

External URL reference

SourceSKILL.md

22	(e.g. `https://blossom.example.com/{sha256}`), causing the URL extraction to fail and

low line 30

External URL reference

SourceSKILL.md

30	- CDN fallback constructs `https://cdn.domain/{sha256}.mp4` but server serves at `/{sha256}`

low line 83

External URL reference

SourceSKILL.md

83	let videoUrl = `https://${CDN_DOMAIN}/${sha256}.mp4`;

low line 86

External URL reference

SourceSKILL.md

86	let videoUrl = `https://${CDN_DOMAIN}/${sha256}`;

low line 97

External URL reference

SourceSKILL.md

97	["imeta", "url https://blossom.primal.net/abc123def456...", "m video/mp4", "x abc123def456..."]

low line 102

External URL reference

SourceSKILL.md

102	New code: accepts any URL from imeta → `https://blossom.primal.net/abc123def456...` → HiveAI can fetch it → video moderated

Scanned on May 14, 2026

View Security Dashboard

Installation guide →

GitHub Stars 254

Rate this skill

Categorydevelopment

UpdatedJune 15, 2026

openclaw backend api backend-developer data-engineer product-manager development product

divinevideo/divine-mobile