youtube-to-blog-post

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill's main script (scripts/youtube_to_post.py) uses yt_dlp in get_video_info to fetch public YouTube video data (title, description, tags) and generate_article_content directly parses and extracts timestamps, features, and code blocks from the untrusted video description to build posts and drive actions (saving files and optional hexo/git deploy), so external, user-generated web content is read and can materially change tool behavior.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.70). The script auto-installs and imports yt-dlp at runtime via a pip subprocess (subprocess.check_call([sys.executable, "-m", "pip", "install", "yt-dlp"])), which fetches and executes remote package code from PyPI (e.g. https://pypi.org/project/yt-dlp/) and is a required dependency for the skill to run.