video-downloader

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). This skill clearly loads and interprets content from public, user-generated sites (e.g., SKILL.md/README state it supports 1000+ public sites, scripts/download.py invokes yt-dlp on arbitrary URLs and scripts/douyin_downloader.py + scripts/apiproxy/*.py use Playwright/requests to fetch and parse douyin.com API/page responses), and those untrusted page/API responses are parsed to extract titles, video URLs, IDs and drive download/decision logic — enabling indirect prompt-injection from third-party content.