youtube-downloader

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's script (scripts/download_video.py) calls yt-dlp --dump-json on arbitrary YouTube URLs to fetch and parse public, user-generated video metadata (title/uploader/duration) and then uses/displays that content as part of the download workflow, exposing the agent to untrusted third-party content from YouTube.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The script automatically runs pip to install the "yt-dlp" package at runtime (which fetches and executes code from PyPI, e.g. https://pypi.org/project/yt-dlp/), and yt-dlp is a required dependency for operation, so this runtime fetch can execute remote code.