youtube-research

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill calls TubeLab's public API (e.g., https://public-api.tubelab.net/v1/search/outliers and /v1/video/transcript/{video_id}) and downloads thumbnails and video transcripts (user-generated YouTube content) which the workflow explicitly reads and analyzes, so the agent consumes untrusted third-party content that could carry injected instructions.