plan-video

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md explicitly says that if research is not present it will "invoke content-strategy:research" using YouTube MCP tools (e.g., search_videos, get_video_comments, get_video_transcript) which fetch public YouTube videos, transcripts, and user comments that the orchestrator must read and incorporate into planning, exposing the agent to untrusted third‑party, user‑generated content.