yt-dlp-downloader

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly instructs the agent to download and inspect videos from public sites when a user provides video URLs (YouTube, Bilibili, Twitter, 抖音, etc.) — e.g., commands like yt-dlp "VIDEO_URL" and yt-dlp -F "VIDEO_URL" — which means untrusted, user-provided web content is fetched and its available formats/metadata are used to decide download/processing actions.