Board Thread:General Discussion/@comment-36961264-20191006152801/@comment-5754239-20191007011913

Sorry, I misspoke. I meant that allowing people to control when your YouTube API key gets used -- even indirectly -- could cause your YouTube API key to exceed the quota limits. There isn't a security risk inherent in what you've given, but it is something to consider. Exceeding the YouTube quota on this project can prevent you from calling the YouTube API from other projects, for example. I apologize if I caused you alarm.

I would also consider having some guards in your textbox so people only input YouTube ids or urls into the textbox.

Thanks for keeping this updated! I appreciate the amount of work you put into this project.