music-downloader

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes explicit command templates that embed credentials on the command line (e.g., --username "YOUR_YOUTUBE_EMAIL" --password "YOUR_PASSWORD"), which would require the agent to include user secrets verbatim in generated commands, creating an exfiltration risk.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs the agent to perform web searches (using the Web_Search tool) and to fetch/download content from open public platforms like YouTube, SoundCloud, Spotify, Reddit, Twitter, TikTok, and other public URLs, which are untrusted, user-generated sources that the agent must read/interpret to find and process requested media.