video-downloader

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill (scripts/download.py and the SKILL.md) takes arbitrary VIDEO_URLs and uses yt-dlp to fetch content from public sites (YouTube, TikTok, Twitter/X, Bilibili, etc.) and can download subtitles (--write-subs), meaning it ingests untrusted, user-generated third‑party content from the open web.