tubescribe

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). Yes — the skill explicitly fetches public YouTube content (captions/transcripts, metadata and viewer comments) via summarize/yt-dlp and HTML scraping (see scripts/tubescribe.py and SKILL.md), and the agent/sub-agent reads and uses that untrusted, user-generated content as part of its processing pipeline to produce summaries, quotes, documents and audio.