ClawHub
Back to skill

Security audit

LastFM to Spotify Playlists

Security checks across malware telemetry and agentic risk

Overview

This skill does what it claims: it uses Last.fm and Spotify to recommend music and can create Spotify playlists when asked.

Install only if you are comfortable giving the skill Spotify playlist write access. Keep credential and token JSON files private, use explicit token paths if you want tighter control, and revoke the Spotify app or delete the saved token when you no longer use it.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
88% confidence
Finding
The skill describes capabilities to read environment variables, access credential files, write token files, and make network calls, but it does not declare permissions or prominently constrain those operations. That creates a transparency and governance gap: an agent or platform may invoke a skill with broader access than the user expects, especially because it can modify external state by creating Spotify playlists and persisting tokens.

Missing User Warnings

Low
Confidence
90% confidence
Finding
The README instructs users to run a command that creates a Spotify playlist but does not clearly warn that this action will modify the user's Spotify account. While expected in context, the missing disclosure can lead to unintended account changes or user surprise, especially if run through an agent or automation flow.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill instructs automatic use of playlist creation flags when the user asks for Spotify playlist actions, but it does not clearly warn that this will modify the user's Spotify account. Because this is an external side effect on a third-party account, insufficient disclosure can lead to unintended playlist creation or population under the user's identity.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal