Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
YouTube Music Cast
v6.0.0Download music from YouTube/YouTube Music and stream to Chromecast via Home Assistant. Complete CLI toolset with web server integration, configuration wizard, and playback controls.
⭐ 0· 1.9k·1 current·1 all-time
byAidan@aidanthebandit
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The described capability (download via yt-dlp, serve files with Python, control Home Assistant to cast) is coherent for a YouTube→Chromecast tool. However the registry metadata lists no required binaries or env vars while SKILL.md explicitly requires yt-dlp, python3, curl, jq and a Home Assistant token — this mismatch is unexpected and reduces trust.
Instruction Scope
SKILL.md instructs the user to clone the repository and run install.sh and scripts/* and to provide a Home Assistant Long-Lived Access Token (sensitive). The skill stores state under ~/.youtube-music-cast. There are no instructions that explicitly exfiltrate data, but the setup entails storing and using a sensitive HA token and running arbitrary remote scripts, which significantly expands the runtime scope beyond a simple local helper.
Install Mechanism
This package contains no install spec or code files; the README instructs cloning and running install.sh from the GitHub repo. That requires executing remote scripts fetched at install time (no checksums or verification shown). Fetching and running an install script from a third-party repo is moderately high risk — review the repo and install scripts before executing.
Credentials
The tool legitimately needs a Home Assistant long‑lived token and a server IP to call HA APIs and serve media. Those credentials are sensitive and the SKILL.md does not declare them in the registry fields (registry shows no required envs) — the absence in metadata is an inconsistency. Only one sensitive credential (HA token) is requested, which is proportionate if minimized and stored/used safely.
Persistence & Privilege
The skill does not request always:true and does not claim system-wide privileges. It will store files under ~/.youtube-music-cast (expected). Autonomous invocation is allowed by default, but that is normal; there is no evidence it attempts to modify other skills or system-wide agent settings.
What to consider before installing
Before installing or running anything from this skill: 1) Verify the upstream GitHub repository and inspect install.sh and any scripts for network downloads, eval/exec calls, or commands that run as root. 2) Don’t paste your Home Assistant token into unknown scripts — create a dedicated HA account with the minimum permissions needed (or a token limited to media_player), and inspect how/where the token is stored (ensure file permissions and consider encrypting it). 3) Run the install in a sandbox/VM if you can, or at least review all files first. 4) Confirm the HTTP server will bind only to your LAN interface (not 0.0.0.0 on a public network) and lock down firewall rules as needed. 5) Install yt-dlp and Python from trusted sources and be mindful of legal/ToS implications of downloading content. The package's lack of included code and the mismatch between registry metadata and SKILL.md are the primary red flags — treat this as untrusted until you review the external repo and scripts.Like a lobster shell, security has layers — review code before you run it.
latestvk972zza92jjb5sc7qgmyxxkrsx80b611
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
🎵 Clawdis