spotify-control
WarnAudited by ClawScan on May 10, 2026.
Overview
The skill mostly matches its Spotify-control purpose, but its AppleScript wrapper inserts unvalidated arguments into executable AppleScript.
Install only if you are comfortable allowing the agent to control Spotify through macOS AppleScript. The maintainer should fix input validation before broad use, especially for set-volume and set-position.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If the agent passes an attacker-controlled value, the skill could run local macOS automation beyond changing Spotify volume or position.
A free-form command-line value is embedded into AppleScript and then executed with osascript. Because the value is not parsed, clamped, or restricted to a number, a malicious or poisoned value could potentially add unintended AppleScript statements.
parser.add_argument("value", nargs="?"); ... script = f'tell application "Spotify" to set sound volume to {vol}'; ... subprocess.Popen(['osascript', '-e', script], ...)Parse and validate numeric inputs in Python before building AppleScript, clamp volume to 0-100 and position to non-negative seconds, and reject any value containing nonnumeric characters. Prefer passing arguments to an AppleScript handler instead of concatenating them into executable script text.
Users on non-macOS systems, or without Spotify automation available, may see failures or unexpected permission prompts.
The packaged metadata does not declare the macOS-only osascript dependency, even though SKILL.md and the Python file make that dependency clear. This is an under-declared environment requirement rather than hidden behavior.
OS restriction: none; Required binaries (all must exist): none
Declare macOS as the OS restriction and list osascript/Spotify availability as requirements or setup prerequisites.