youtube-to-bookplayer
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes the Bash tool to execute a series of commands for downloading media, modifying file tags, and managing temporary directories. It also executes local Python scripts to interface with the iPhone's filesystem.
- [EXTERNAL_DOWNLOADS]: Media files are downloaded from YouTube URLs provided at runtime. The skill also fetches the pymobiledevice3 package from the Python Package Index (PyPI) via uvx to facilitate USB communication.
- [PROMPT_INJECTION]: The skill handles untrusted data in the form of YouTube video metadata. This attack surface is mitigated by a design that requires manual confirmation of the metadata via the AskUserQuestion tool before it is used in subsequent commands. Ingestion points: YouTube metadata extracted via yt-dlp; Boundary markers: The template explicitly pauses for user confirmation; Capability inventory: Bash, media tagging, and USB file writing; Sanitization: Manual user verification of titles and artists.
Audit Metadata