youtube-summarizer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill directly fetches and ingests transcripts from public YouTube videos (via youtube-transcript-api) using user-provided URLs, and the agent reads and summarizes that untrusted, user-generated content as part of its workflow, which can enable indirect prompt injection.