youtube-data

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The prompt instructs the agent to collect a user OTP/token and shows CLI commands that embed those secrets as command-line arguments (and mentions saving the API key to agent config), which requires the LLM to include secret values verbatim in output.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill calls transcriptapi.com YouTube endpoints (e.g., /api/v2/youtube/transcript, /api/v2/youtube/search, /api/v2/youtube/channel/videos, /api/v2/youtube/playlist/videos) to fetch public YouTube transcripts, titles, descriptions and other user-generated content which the agent ingests and interprets, creating a clear avenue for indirect prompt injection.