YouTube Notes

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward YouTube transcript-to-notes helper that uses a disclosed third-party API and only offers optional saving after the user sees the notes.

Install only if you are comfortable sending YouTube video identifiers or URLs to TranscriptAPI.com and fetching the YouTube page from your agent environment. Avoid using it for sensitive private-context or unlisted videos unless that disclosure is acceptable, and confirm any save destination before allowing another tool or skill to store the generated notes.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Context-Inappropriate Capability

Medium

Confidence: 92% confidence
Finding: The skill’s core purpose is to generate markdown notes from a YouTube video, but it explicitly instructs the agent to offer saving the output into external services or local files. That expands the skill’s operational scope into data exfiltration, persistence, and side-effectful actions that may trigger additional tool use without the user initially requesting those integrations, increasing the chance of oversharing or unsafe writes.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal