youtube-publisher
Pass
Audited by Gen Agent Trust Hub on Apr 24, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill utilizes the official 'googleapis' library to interact with the YouTube Data API v3, ensuring compliance with official platform security standards.
- [SAFE]: Authentication is implemented using the standard OAuth2 flow, where users provide their own credentials via a local environment file (.env), which is a secure practice for developer-oriented tools.
- [SAFE]: Sensitive information, specifically the OAuth2 refresh token, is stored locally in '.youtube-token.json' within the skill's own directory and is not transmitted to any third-party besides Google's authorization servers.
- [SAFE]: The scripts do not contain any arbitrary command execution, obfuscation, or persistence mechanisms. All file operations (reading videos, writing tokens) are limited to the intended scope of the video publishing functionality.
Audit Metadata