video-transcription

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill ingests arbitrary public media URLs and provider outputs (e.g., download_videos_from_manifest_with_ytdlp.mjs downloads item.sourceUrl and _shared.resolveProviderMediaInput accepts https:// media URLs, and downloadProviderOutputs/fetchJson then fetch and consume those remote artifacts), so untrusted/user-generated third‑party content is fetched and interpreted as part of the transcription workflow.