The Agent Skills Directory

[COMMAND_EXECUTION]: The script executes the yt-dlp utility using Python's subprocess module. All commands are constructed as lists (not strings), which is a secure practice that prevents command injection even when handling user-provided URLs.
[EXTERNAL_DOWNLOADS]: The skill relies on the yt-dlp package, a widely recognized and legitimate open-source media downloader. The instructions correctly direct the agent to use the standard pip package manager for this dependency.
[DATA_EXFILTRATION]: No unauthorized network activity or data exfiltration was detected. The network operations performed are limited to the intended functionality of downloading media from provided Twitter/X URLs.
[CREDENTIALS_UNSAFE]: The skill provides an optional mechanism for users to provide their own cookies for downloading restricted content. It does not store, hardcode, or attempt to steal credentials.

twitter-downloader