Skills
skills/iopho-team/skills/iopho-searching-videos/Gen Agent Trust Hub

iopho-searching-videos

Pass

Audited by Gen Agent Trust Hub on Mar 25, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses the ! syntax in SKILL.md to perform environment checks at load time (e.g., checking for yt-dlp and duckduckgo-search). It also utilizes bash commands to execute yt-dlp and python3 for search operations. These are diagnostic and functional commands associated with the skill's primary purpose.
  • [PROMPT_INJECTION]: The skill processes user-supplied queries by interpolating them into shell command templates. This represents an indirect prompt injection surface. 1. Ingestion points: User-provided search queries in SKILL.md. 2. Boundary markers: Absent. 3. Capability inventory: Shell execution via yt-dlp and python3. 4. Sanitization: No explicit sanitization is defined within the skill.
  • [EXTERNAL_DOWNLOADS]: Mentions dependencies on yt-dlp and duckduckgo-search, which are well-known and trusted tools for video and search tasks.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 25, 2026, 08:15 AM