kb-yt-channel

Warn

Audited by Snyk on Jun 28, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.95). The skill ingests YouTube channel content at runtime via kb ingest youtube <video.url> --transcribe ..., where the resulting scraped transcript text is written into raw/youtube/*.md and then used for indexing/search—this is outsider-authored free text from public YouTube pages/videos.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Jun 28, 2026, 07:33 PM
Issues
1
Security Audit — snyk — kb-yt-channel