music

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's runtime calls yt-dlp to search and fetch YouTube video metadata and webpage URLs (see scripts/lib/ytdl.js and scripts/music.js invoked by SKILL.md), so untrusted user-generated content from public YouTube pages is parsed and used to decide which tracks to play—allowing that third-party content to materially influence selection and playback.