youtube-clip-extractor

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly downloads videos and subtitles from public YouTube URLs using yt-dlp (e.g., "--write-auto-sub ... 'YOUTUBE_URL'") and requires the agent to read/convert/analyze the resulting VTT/markdown transcripts as part of Phase 1.5/Phase 2 clip identification, exposing it to untrusted user-generated third-party content.