facebook-videos
Pass
Audited by Gen Agent Trust Hub on Jul 10, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The Python script
download_facebook_videos.pyusessubprocess.run()to executeyt-dlp. The commands are constructed using list arguments, which is a security best practice that prevents shell injection vulnerabilities. - [EXTERNAL_DOWNLOADS]: The skill instructions suggest ensuring
yt-dlpis installed viapip. This is a standard procedure for tools that rely on external media download utilities. - [DATA_EXFILTRATION]: The skill supports the
--cookies-from-browserflag foryt-dlp. This is a legitimate feature used to authenticate with Facebook for downloading videos that are behind login walls. The data is handled locally by theyt-dlputility for authentication purposes and is not sent to any third-party servers.
Audit Metadata