youtube-embed
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill fetches thumbnails from YouTube's official image CDN (i.ytimg.com). This is a standard practice and utilizes a trusted service provider.
- [PROMPT_INJECTION]: There is a potential indirect prompt injection surface in the VideoObject schema generation (references/schema.md).
- Ingestion points: The component ingests the title and description props into a JSON-LD script block.
- Boundary markers: Lacks explicit sanitization to prevent breaking out of the JSON-LD script tag.
- Capability inventory: The component uses set:html to inject content directly into the document, providing a path for script execution.
- Sanitization: Relies on JSON.stringify, which does not escape sequences like . A malicious title could be used to perform cross-site scripting (XSS).
- [SAFE]: The skill implements a privacy-preserving 'facade' pattern, ensuring that third-party scripts from YouTube are only loaded after user interaction.
Audit Metadata