Back to skill
Skillv1.0.1
ClawScan security
spotify-control · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 9, 2026, 8:25 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code, instructions, and requirements align with a macOS AppleScript-based Spotify controller and request no unrelated permissions or secrets.
- Guidance
- This skill appears coherent and low-risk: it simply runs AppleScript (via osascript) to control the local Spotify app and does not access credentials or the network. Before installing, confirm you are comfortable giving the agent the ability to control local media playback (an autonomous agent could change or pause music). If you want extra assurance, inspect or run scripts/spotify-control.py locally to verify behavior and ensure osascript and Spotify are available on the target macOS machine. If the author is unknown and you don't want an agent to change audio automatically, avoid enabling autonomous invocation or restrict when the skill may be used.
Review Dimensions
- Purpose & Capability
- okName/description match the included SKILL.md and the Python wrapper. The only operations are AppleScript calls to the Spotify app via osascript, which is exactly what a macOS Spotify controller would need.
- Instruction Scope
- okSKILL.md limits behavior to one-shot AppleScript commands and explicitly references using the provided scripts/spotify-control.py wrapper. The wrapper only constructs AppleScript and invokes osascript; it does not read files, environment variables, or send data to external endpoints.
- Install Mechanism
- okNo install spec is present (instruction-only with a helper script). Nothing is downloaded or written to disk by an installer; risk is minimal. The script will run on-demand using the system's Python and osascript.
- Credentials
- okThe skill declares no required environment variables or credentials and the code does not access any secrets, network sockets, or unrelated config paths. This is proportionate to the stated purpose.
- Persistence & Privilege
- okalways is false and the skill does not attempt to modify other skills or system-wide settings. Autonomous invocation is allowed by platform default; combined with this skill's limited scope, that is low risk.