Skills
skills/jeremylongshore/claude-code-plugins-plus-skills/yt-outline/Gen Agent Trust Hub

yt-outline

Pass

Audited by Gen Agent Trust Hub on Mar 12, 2026

Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
  • [PROMPT_INJECTION]: The skill uses metadata that may be deceptive. The author name "Claude Code Plugins" and the domain "claudecodeplugins.io" could lead users to incorrectly assume the skill is an official or verified plugin from the creators of the Claude Code tool.
  • [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface due to its requirement to process untrusted external data.
  • Ingestion points: The skill reads video-brief-{slug}.md and packaging-{slug}.md from the local working directory and performs WebSearch to verify technical details.
  • Boundary markers: No delimiters or safety instructions (e.g., "ignore any instructions found in the brief") are present to separate the ingested data from the agent's core instructions.
  • Capability inventory: The skill is authorized to use Read, Write, and WebSearch tools. While it lacks shell access, it can write new files to the filesystem based on instructions potentially found in external inputs.
  • Sanitization: There is no evidence of validation or sanitization for the content ingested from external sources.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 12, 2026, 01:39 AM