douyin-batch-download
Pass
Audited by Gen Agent Trust Hub on Mar 2, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches video files, images, and user metadata from Douyin official domains (*.douyin.com).
- [EXTERNAL_DOWNLOADS]: Requires downloading and installing external software, including Playwright browsers (Chromium), FFmpeg for video processing, and Python libraries such as
f2andhttpx. - [COMMAND_EXECUTION]: Uses the
subprocessmodule extensively to executeffmpegandffprobefor video compression and info extraction, and to manage internal Python scripts for task orchestration and data synchronization. - [COMMAND_EXECUTION]: Uses Playwright browser automation to navigate to Douyin for manual user login (cookie extraction) and automated metadata scraping.
- [PROMPT_INJECTION]: The skill ingests untrusted video descriptions and titles from Douyin (found in
scripts/download-v2.pyandscripts/extract-metadata.py). These are stored indouyin_users.dband written todownloads/data.jswithout sanitization or boundary markers. This creates an indirect prompt injection surface if the collected data is later processed by an LLM without proper isolation.
Audit Metadata