ClawHub

spotify-control

Security checks across malware telemetry and agentic risk

Overview

This Spotify control skill mostly does what it says, but its volume and seek arguments can be interpreted as AppleScript, so it needs review before installation.

Install only if you intend to let an agent run local AppleScript against Spotify. Until this is fixed, pass only simple trusted numeric values for volume and seek position; a safer version should parse volume and position as numbers and enforce ranges.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Behavioral ASTexec() Call, eval() Call, Dynamic Import
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (1)

subprocess module call

Medium
Category
Dangerous Code Execution
Content
def run_osascript(script):
    try:
        process = subprocess.Popen(['osascript', '-e', script], stdout=subprocess.PIPE, stderr=subprocess.PIPE, text=True)
        stdout, stderr = process.communicate()
        if process.returncode != 0:
            print(f"Error: {stderr.strip()}")
Confidence
94% confidence
Finding
process = subprocess.Popen(['osascript', '-e', script], stdout=subprocess.PIPE, stderr=subprocess.PIPE, text=True)

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal