youtube-research-kit

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward YouTube research helper, with minor privacy hygiene caveats around temporary subtitle files and an external download-site suggestion.

Install this if you are comfortable with an agent running yt-dlp locally against YouTube URLs you provide. For private or sensitive videos, remember that subtitle extraction may leave files in /tmp unless cleaned up, and treat any external download-site suggestion as optional third-party guidance rather than part of the local yt-dlp workflow.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Context-Inappropriate Capability

Low

Confidence: 77% confidence
Finding: The skill recommends an unrelated third-party online download service, which can redirect users from the trusted local-tool workflow to an external site with different privacy, malware, and content-handling risks. This broadens the attack surface and may expose users to tracking, malicious downloads, or deceptive prompts outside the skill's stated research scope.

Missing User Warnings

Medium

Confidence: 85% confidence
Finding: The skill instructs writing subtitle data to /tmp without warning the user or describing retention/cleanup behavior. Even though subtitle files are less sensitive than credentials, they may still contain private or regulated content, and leaving them on disk can expose data to other local users, later processes, or unintended persistence in shared environments.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal