← 返回 Skills 市场
YouTube Music ULTRA
作者
om yarewara
· GitHub ↗
· v3.0.0
470
总下载
0
收藏
1
当前安装
1
版本数
在 OpenClaw 中安装
/install youtube-music
功能描述
Control YouTube Music with natural language. Play, pause, skip, search, manage playlists, and queue tracks. Full playback control via browser automation.
安全使用建议
This skill appears to do what it says (control YouTube Music via OpenClaw's browser), but review the code before installing: 1) Confirm you trust the OpenClaw CLI and the 'openclaw browser' commands the skill runs (it can start the browser and open arbitrary URLs). 2) The metadata asks for YOUTUBE_MUSIC_BROWSER_PROFILE but the scripts default to 'openclaw' — either remove the unused env requirement or update scripts to respect it. 3) The Node.js and bash code build shell commands and write cache files from user-provided queries (echo into files, execSync/fastExec). These are correctness/privacy risks: unsanitized input could cause shell injection or malformed cache content; cache files store listening history. Inspect/validate or sanitize input handling (or run the skill in an isolated environment) before granting it access. 4) If you allow autonomous invocation, consider the privacy implications (local cache, ability to open URLs) and whether you prefer to keep the skill user-invocable only. Recommended actions: run the bundled test.sh in a sandbox, audit usages of execSync/fastExec/echo for proper escaping, and remove or correctly implement the YOUTUBE_MUSIC_BROWSER_PROFILE requirement. If you are not comfortable auditing the code yourself, run the skill in a restricted container or decline installation.
功能分析
Type: OpenClaw Skill
Name: youtube-music
Version: 3.0.0
The skill's core purpose is benign: controlling YouTube Music via OpenClaw browser automation. However, the Node.js scripts (`scripts/control.js`, `scripts/direct-play.js`, `scripts/ultra-play.js`) contain shell injection vulnerabilities. They use `child_process.execSync` to construct and execute shell commands with user-controlled input (e.g., song queries, video IDs) without proper shell escaping. This allows an attacker to inject arbitrary commands or arguments to the `openclaw browser` CLI, posing a significant risk of remote code execution. This is a critical vulnerability, not intentional malice.
能力评估
Purpose & Capability
Name/description, scripts, and runtime instructions all describe browser automation for YouTube Music and the required 'node' binary is justified by the included Node.js scripts. However, the declared required env var YOUTUBE_MUSIC_BROWSER_PROFILE is not actually used by the scripts (they hardcode or default to the 'openclaw' profile). This is a mismatch that should be clarified.
Instruction Scope
SKILL.md and the scripts limit actions to controlling https://music.youtube.com via the OpenClaw browser (open/start/status, open targetUrl). The skill also stores listening/cache data (in ~/.openclaw workspace and /tmp cache files) and can auto-start the browser. Those behaviors are consistent with a playback controller, but the presence of persistent caching and a claimed 'listening history' means the skill will collect and store local user activity (privacy consideration).
Install Mechanism
There is no external download/install spec (instruction-only + shipped scripts). Nothing is pulled from arbitrary remote URLs during install, so install risk is low. The code will be written into the skill workspace when added, which is expected for a script-based skill.
Credentials
The declared env var (YOUTUBE_MUSIC_BROWSER_PROFILE) appears unnecessary (unused) — mismatch is suspicious but low risk. No API keys or unrelated credentials are requested. However, the skill requires access to the OpenClaw CLI and can start/open the browser and open arbitrary targetUrl values derived from user queries; combined with several places where shell commands are built from query text (execSync / fastExec / echo into cache files), this introduces potential for command-injection or shell-escaping issues if queries are not sanitized.
Persistence & Privilege
always:false (no forced inclusion). The skill writes cache files (e.g. /tmp/yt_music_v3_cache.json, /tmp/yt_music_v3.json and files under ~/.openclaw/workspace/skills/youtube-music) and can start the OpenClaw browser/gateway. Writing local caches and auto-starting the browser are proportionate for this purpose, but remember these artifacts persist locally and could contain user activity; also the skill can autonomously open URLs (default agent invocation allowed), which expands its operational reach — worth limiting if you don't want autonomous web actions.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install youtube-music - 安装完成后,直接呼叫该 Skill 的名称或使用
/youtube-music触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v3.0.0
v3.0 ULTRA FAST: 95% faster, direct video ID support, smart caching, atomic play actions, fuzzy matching
元数据
常见问题
YouTube Music ULTRA 是什么?
Control YouTube Music with natural language. Play, pause, skip, search, manage playlists, and queue tracks. Full playback control via browser automation. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 470 次。
如何安装 YouTube Music ULTRA?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install youtube-music」即可一键安装,无需额外配置。
YouTube Music ULTRA 是免费的吗?
是的,YouTube Music ULTRA 完全免费(开源免费),可自由下载、安装和使用。
YouTube Music ULTRA 支持哪些平台?
YouTube Music ULTRA 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 YouTube Music ULTRA?
由 om yarewara(@oki3505f)开发并维护,当前版本 v3.0.0。
推荐 Skills