Trust Assessment
youtube-summarize received a trust score of 54/100, placing it in the Caution category. This skill has some security considerations that users should review before deployment.
SkillShield's automated analysis identified 3 findings: 1 critical, 1 high, 0 medium, and 1 low severity. Key findings include Network egress to untrusted endpoints, Potential Command Injection via VIDEO_URL, Unpinned yt-dlp dependency.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on February 13, 2026 (commit 13146e6a). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings3
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| CRITICAL | Network egress to untrusted endpoints URL pointing to known exfiltration/webhook service Review all outbound network calls. Remove connections to webhook collectors, paste sites, and raw IP addresses. Legitimate API calls should use well-known service domains. | Manifest | skills/hightower6eu/youtube-summarize-5oixh/SKILL.md:10 | |
| HIGH | Potential Command Injection via VIDEO_URL The skill constructs multiple shell commands using a `VIDEO_URL` placeholder. If user-provided input for `VIDEO_URL` is directly interpolated into these commands without proper shell escaping (e.g., using `shlex.quote` in Python), a malicious URL could inject arbitrary shell commands. This could lead to unauthorized data access, modification, or system compromise on the host executing the skill. Ensure all user-provided inputs, especially `VIDEO_URL`, are properly sanitized and shell-escaped before being passed to external commands like `yt-dlp`. Use robust shell quoting mechanisms provided by the execution environment (e.g., `shlex.quote()` in Python). | LLM | SKILL.md:30 | |
| LOW | Unpinned yt-dlp dependency The `pip install yt-dlp` command and the skill's manifest specify `yt-dlp` without a version pin. This means that future installations could pull in any new version of the package, which might introduce breaking changes, unexpected behavior, or even security vulnerabilities if a malicious version were published. This is a minor supply chain risk. Pin the `yt-dlp` dependency to a specific, known-good version (e.g., `yt-dlp==2023.10.13`) to ensure consistent and secure installations. Update the manifest and installation instructions accordingly. | LLM | SKILL.md:26 |
Scan History
Embed Code
[](https://skillshield.io/report/a392878133b1ac69)
Powered by SkillShield