Back to skill

Security audit

YouTube Channel Parse

Security checks across malware telemetry and agentic risk

Overview

The skill does what it claims, but it weakens HTTPS checks by default and can use browser/session cookies for YouTube access without a clear consent boundary.

Review before installing. Use it only in an environment where you are comfortable downloading YouTube content, writing multiple local output files, and installing Python packages at runtime. Avoid --cookies and --cookies-from-browser unless you intentionally want the tool to use account-linked YouTube access, and prefer fixing certificate or proxy configuration instead of running yt-dlp with certificate checks disabled.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Tool MisuseTool Parameter Abuse, Chaining Abuse, Unsafe Defaults
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
94% confidence
Finding
The skill instructs the agent to perform network access, shell execution, and local file reads/writes, but it does not declare permissions or clearly scope those capabilities. That mismatch can bypass user expectations and policy gating, increasing the risk of unauthorized downloads, transcript generation, or artifact creation during execution.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The outputs section describes creation of multiple local artifacts and the workflow may download captions or audio, but the skill description does not warn users about these side effects up front. This can lead to surprise file creation, storage consumption, and unintended external access, especially in restricted or sensitive environments.

Tool Parameter Abuse

High
Category
Tool Misuse
Content
uv run --with yt-dlp --with youtube-transcript-api --with faster-whisper python scripts/<script>.py ...
```

Pass `--no-check-certificates` to `yt-dlp` when the environment requires it.

Read `references/dependencies.md` for command patterns and dependency notes.
Confidence
97% confidence
Finding
--no-check

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.