video-batch-runner

Warn

Audited by Snyk on May 20, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.90). The skill explicitly ingests external public media URLs that are used in generation and downloads (e.g., references/hosted-video-generative.md shows reference_images/reference_videos with arbitrary URLs and the shared script scripts/download_videos_from_manifest_with_ytdlp.mjs fetches item.sourceUrl via yt_dlp), so untrusted third-party content is fetched and can materially influence generation and tool actions.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
May 20, 2026, 02:14 AM
Issues
1
Security Audit — snyk — video-batch-runner