youtube-automation
Pass
Audited by Gen Agent Trust Hub on Feb 20, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [Indirect Prompt Injection] (LOW): The skill defines a vulnerability surface where the agent processes untrusted data while holding high-impact capabilities. \n
- Ingestion points: Untrusted content enters the context via
YOUTUBE_LIST_COMMENT_THREADS,YOUTUBE_SEARCH_YOU_TUBE, andYOUTUBE_VIDEO_DETAILS. \n - Boundary markers: The instructions do not include delimiters or directives for the agent to ignore instructions embedded within the retrieved YouTube content. \n
- Capability inventory: The agent has access to sensitive tools like
YOUTUBE_UPLOAD_VIDEO,YOUTUBE_UPDATE_VIDEO, andYOUTUBE_SUBSCRIBE_CHANNEL. \n - Sanitization: There are no requirements for the agent to sanitize or validate the external data before use. \n- [No Code] (SAFE): No executable code, scripts, or binaries are included in the skill.
Audit Metadata