Playlistable

Security checks across malware telemetry and agentic risk

Overview

This Spotify playlist skill is coherent, but it can delete Spotify playlists without documented confirmation safeguards.

Install only if you trust Playlistable with Spotify playlist access. Before using it, require explicit confirmation for playlist deletion or edits, confirm the playlist name/ID back to the user, and remember that generated playlists are documented as public on Spotify and the saved config/auth.json API key should be treated as a credential.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill explicitly exposes a `delete_playlist` capability but does not warn that it is destructive or require an explicit confirmation step before use. In an agent setting, this increases the chance of accidental or ambiguous deletion requests causing irreversible loss of user-curated playlists.

Missing User Warnings

Medium

Confidence: 90% confidence
Finding: The API reference documents a `delete_playlist` operation that removes playlists from both Playlistable and Spotify, but it provides no explicit warning that the action is destructive and no guidance to require user confirmation before invoking it. In an agent/tooling context, this increases the chance of accidental irreversible deletion from ambiguous prompts, misclicks, or model misunderstanding.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal