Skills
skills/davepoon/buildwithclaude/youtube-downloader/Gen Agent Trust Hub

youtube-downloader

Pass

Audited by Gen Agent Trust Hub on Apr 7, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The script automatically manages the 'yt-dlp' dependency. If not found on the system, it creates a local Python virtual environment and installs 'yt-dlp' from the official Python Package Index (PyPI).
  • [COMMAND_EXECUTION]: Subprocess calls are used to manage the virtual environment and execute the 'yt-dlp' binary. These calls use argument lists rather than shell strings, and the primary variable input (the URL) is strictly validated against a whitelist of allowed YouTube hostnames (youtube.com, youtu.be, youtube-nocookie.com).
  • [PROMPT_INJECTION]: The skill processes external video metadata (titles) which are printed to the console and could be seen by the agent. This represents an indirect prompt injection surface where attacker-controlled titles could contain instructions, though the risk is mitigated by the script's focus on structured metadata extraction and standard LLM safety guardrails.
  • [DATA_EXFILTRATION]: The skill implements a security check on input URLs, ensuring only HTTPS connections to authorized YouTube domains are permitted. This prevents the tool from being misused to interact with unauthorized external servers or local services.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 7, 2026, 01:58 AM
Security Audit — agent-trust-hub — youtube-downloader