ClawHub

Lyrion Music

PassAudited by ClawScan on May 1, 2026.

Overview

The skill appears to be a straightforward Lyrion Music Server controller, but users should verify the target host and remember it can change playback, volume, power, and playlists.

Before installing, verify the LMS host and port, preferably by setting LYRION_HOST and LYRION_PORT yourself. Treat volume, power, and playlist-clearing commands as real changes to your music setup. The artifacts do not show credential theft, persistence, or hidden exfiltration.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Low
#ASI02: Tool Misuse and Exploitation
What this means

If invoked incorrectly, it could start or stop playback, change volume, power a player on or off, or clear a playlist.

Why it was flagged

The skill exposes commands that can directly change a music player’s state, volume, power, and playlist. This matches the stated purpose, but users should be aware the agent can perform real device/media actions.

Skill content
`play`, `pause`, `stop`, `power`, `volume`, `clear`, `add`, `playtrack`
Recommendation

Use clear player IDs and confirm destructive playlist or loud volume changes before running them.

Low
#ASI09: Human-Agent Trust Exploitation
What this means

The skill may fail or control an unintended local music server if the default address is wrong for the user’s network.

Why it was flagged

The script defaults to 192.168.20.10, while SKILL.md documents the default host as 192.168.20.40:9000. A default run may therefore target a different LMS host than the user expects.

Skill content
HOST="${LYRION_HOST:-192.168.20.10}"
Recommendation

Set LYRION_HOST and LYRION_PORT explicitly before use, and consider updating the documentation or script so the defaults match.

Info
#ASI04: Agentic Supply Chain Vulnerabilities
What this means

The skill may not work as expected on systems without curl, and formatted output may not work without python3.

Why it was flagged

The metadata does not declare required binaries, but scripts/lyrion.sh invokes curl and uses python3 for JSON formatting. This is an incomplete dependency declaration rather than hidden malicious behavior.

Skill content
Required binaries (all must exist): none; Required binaries (at least one): none
Recommendation

Ensure curl is installed, and install python3 if formatted JSON output is desired.