video-transcript-downloader

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill fetches and processes transcripts/subtitles from open/public sites (YouTube via youtube-transcript-plus in scripts/vtd.js -> cmdTranscript and arbitrary sites via yt-dlp in ytDlpSubtitlesToTemp/cmdDownload/cmdSubs), which are untrusted/user-generated sources and are read and converted into paragraph transcripts by the agent as part of its workflow.