bilibili-downloader

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly uses yt-dlp to download videos from the public Bilibili site (via --url BV links and --space UP主UID), causing the agent to fetch and process user-generated, untrusted third‑party content (videos/audio) as part of its workflow.