Back to skill
Skillv1.0.0
ClawScan security
Yandex Music · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 9, 2026, 11:46 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's files, runtime instructions, and network activity align with its stated purpose (Yandex Music inspection) and do not request unrelated credentials or unusual installs.
- Guidance
- This skill appears to do what it says: it uses a bundled Python helper to call Yandex Music APIs and Ynison websocket endpoints. Before installing, consider: (1) you must provide a Yandex Music token (YM_TOKEN or via auth-set), and that token will be saved in the workspace config file under the skill directory (config file is created with 0600 permissions). (2) The skill will create a local virtualenv and pip-install the 'yandex-music' package from PyPI — if you prefer, run these steps manually in an isolated environment. (3) The script opens websocket/HTTP connections to Yandex hosts (expected for now-playing queries). (4) If you have concerns, review the bundled scripts (scripts/ymctl.py and references/token-and-control.md) yourself; the SKILL.md explicitly warns not to echo secrets and not to implement automated extraction flows.
Review Dimensions
- Purpose & Capability
- okName/description, SKILL.md, and the included helper script (scripts/ymctl.py) all implement Yandex Music inspection (search, now-playing via Ynison, likes, playlists, token storage). Required capabilities (websocket/API calls to Yandex) match the stated purpose.
- Instruction Scope
- noteRuntime instructions are specific: prefer a skill-local .venv, install the official yandex-music package, use YM_TOKEN or workspace config, validate tokens, and avoid echoing secrets. The script reads/writes a workspace-local config file and opens websockets/HTTP connections to Yandex endpoints (ynison/music.yandex.ru), which is appropriate for now-playing queries. Note: SKILL.md explicitly instructs not to implement any secret-extraction automation and to ask the user for tokens.
- Install Mechanism
- okNo global install spec in the registry (instruction-only), but SKILL.md tells the agent to create a local Python venv and pip-install the 'yandex-music' package from PyPI. This is a reasonable, proportional approach for a Python helper script. No downloads from untrusted URLs are present.
- Credentials
- noteThe skill does not declare required env vars in registry metadata, but both SKILL.md and the script use/accept YM_TOKEN as an environment source and allow persisting a token to the workspace config. That mismatch is minor but worth noting: supplying a YM_TOKEN is expected to use the skill, and tokens will be stored locally at the skill's workspace config path (written with mode 0600).
- Persistence & Privilege
- okSkill is not always-enabled and can be invoked by the user. It stores its own workspace-local config file (no evidence it modifies other skills or global agent settings). It needs runtime network access to Yandex services to function, which is appropriate for its purpose.