youtube-shorts-generator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly downloads and ingests public YouTube videos (Download stage / downloader.py) and transcribes them (transcriber.py) so the agent reads user-generated third‑party content and uses the transcript to drive LLM-based highlight ranking and clip selection, which could allow instructions embedded in that content to influence tool decisions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill explicitly requires cloning and running code from the GitHub repo https://github.com/SamurAIGPT/AI-Youtube-Shorts-Generator.git (“If the repo isn't cloned yet, clone ...”), which fetches remote code that will be executed as part of the pipeline and is a required dependency.