← 返回 Skills 市场
steipete

Spotify Player

作者 Peter Steinberger · GitHub ↗ · v1.0.0
cross-platform ⚠ suspicious
26770
总下载
55
收藏
1216
当前安装
1
版本数
在 OpenClaw 中安装
/install spotify-player
功能描述
Terminal Spotify playback/search via spogo (preferred) or spotify_player.
安全使用建议
Install only if you trust the spogo CLI and are comfortable letting it import Spotify authentication from Chrome. Prefer an official OAuth or device-code login if available, and verify where spogo stores imported tokens and how to revoke them.
功能分析
Type: OpenClaw Skill Name: spotify-player Version: 1.0.0 The skill bundle is classified as suspicious due to the `spogo auth import --browser chrome` command specified in `SKILL.md`. This command accesses sensitive browser cookies for authentication, which, while plausibly needed for the stated purpose of a Spotify player, represents a high-risk capability that could be abused. There is no clear evidence of intentional malicious behavior or prompt injection against the agent for data exfiltration or unauthorized actions within the provided files, but the direct access to browser data warrants a 'suspicious' classification.
能力评估
Purpose & Capability
Spotify playback and search plausibly require authentication, and the documented spogo and spotify_player commands match the stated media-control purpose.
Instruction Scope
SKILL.md explicitly instructs `spogo auth import --browser chrome`, which uses local browser session material, but does not define what is read, where tokens are stored, or how access is limited.
Install Mechanism
The install metadata only declares Homebrew installs for spogo or spotify_player; the sensitive browser import appears as a user-visible setup step, not hidden automatic execution.
Credentials
Reading or importing browser authentication is high-impact access for a terminal Spotify player and is under-scoped in the artifact, even though authentication itself is expected.
Persistence & Privilege
The cookie import likely creates persistent local authentication state for playback control, but the artifact gives no revocation, containment, or safe-handling guidance.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install spotify-player
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /spotify-player 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
元数据
Slug spotify-player
版本 1.0.0
许可证
累计安装 1218
当前安装数 1216
历史版本数 1
常见问题

Spotify Player 是什么?

Terminal Spotify playback/search via spogo (preferred) or spotify_player. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 26770 次。

如何安装 Spotify Player?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install spotify-player」即可一键安装,无需额外配置。

Spotify Player 是免费的吗?

是的,Spotify Player 完全免费(开源免费),可自由下载、安装和使用。

Spotify Player 支持哪些平台?

Spotify Player 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Spotify Player?

由 Peter Steinberger(@steipete)开发并维护,当前版本 v1.0.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论