Skills
skills/cdeistopened/content-os/youtube-downloader/Gen Agent Trust Hub

youtube-downloader

Fail

Audited by Gen Agent Trust Hub on Mar 10, 2026

Risk Level: HIGHCOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses sudo apt install to install system packages, which involves acquiring administrative privileges.
  • [EXTERNAL_DOWNLOADS]: Automatically installs the yt-dlp utility via brew, apt, or pip if it is missing from the system.
  • [COMMAND_EXECUTION]: Employs dynamic Python execution and heredocs to manipulate and clean downloaded transcript files.
  • [PROMPT_INJECTION]: Vulnerable to indirect prompt injection through external video transcripts. Ingestion points: .vtt files from YouTube. Boundary markers: None. Capability inventory: Shell execution, file system modification, and network access. Sanitization: Basic regex for cleaning subtitles, providing no protection against embedded instructions.
Recommendations
  • AI detected serious security threats
Audit Metadata
Risk Level
HIGH
Analyzed
Mar 10, 2026, 12:38 AM