tubi-downloader

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly states the extension will detect and ingest Tubi's HLS/DASH streams and page playback sources from Tubi's public website (see "How It Will Work" and "Expected Formats"), meaning the agent reads and acts on untrusted third‑party web content which can influence its download/assembly behavior.