Skills
skills/memtensor/skills-vote/media-downloader/Gen Agent Trust Hub

media-downloader

Pass

Audited by Gen Agent Trust Hub on Apr 8, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes the yt-dlp command-line tool to perform its primary function. The Python script scripts/download.py follows security best practices by passing arguments as a list to subprocess.run(), which effectively prevents shell injection attacks even when processing user-provided URLs.
  • [EXTERNAL_DOWNLOADS]: The skill facilitates downloading content from well-known media platforms (such as YouTube, TikTok, and Bilibili) as requested by the user. These operations are within the stated scope of the skill and target legitimate services.
  • [CREDENTIALS_UNSAFE]: While the documentation mentions authentication options like browser cookies and user credentials to access restricted content, no sensitive information or hardcoded secrets are included in the skill's code or instructions.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 8, 2026, 06:21 AM