yt-dlp

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly extracts and processes arbitrary public video URLs (e.g., scripts/extract_urls.py) and then runs yt-dlp to fetch metadata or download content from open third‑party sites like youtube.com, twitter.com, vimeo.com via scripts/download_video.py and extract_audio.py, so it ingests untrusted user-generated web content as part of its workflow.