youtube-video-analyst
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it is designed to ingest and analyze untrusted external data from YouTube transcripts.
- Ingestion points: YouTube transcripts are retrieved via
scripts/fetch_transcript.pyor manually provided by the user. - Boundary markers: Absent. The prompt instructions do not specify delimiters to separate the untrusted transcript text from the agent's core instructions.
- Capability inventory: The skill utilizes
scripts/fetch_transcript.pyto interact with external YouTube endpoints. - Sanitization: Absent. The ingested transcript content is processed directly without filtering or sanitization.
- [COMMAND_EXECUTION]: The skill provides instructions to execute a local Python script
scripts/fetch_transcript.pyfor fetching data. The script uses secure practices, includingargparsefor input handling andrefor URL validation, which mitigates standard command injection risks.
Audit Metadata