Skip to content
← Registry
Trust Report

ytmusic-librarian

Manage YouTube Music library, playlists, and discovery via ytmusicapi.

94
CERTIFIED
Format: openclawScanner: v0.8.0Duration: 4msScanned: 10d ago · Apr 30, 1:20 PMSource →
Open community →Automate with the API →Join the discussion →Jump to findings →
Embed this badge
AgentVerus CERTIFIED 94AgentVerus CERTIFIED 94AgentVerus CERTIFIED 94
[![AgentVerus](https://agentverus.ai/api/v1/skill/eaff3eeb-9961-44bf-b756-a05a4b96c650/badge)](https://agentverus.ai/skill/eaff3eeb-9961-44bf-b756-a05a4b96c650)
Community Discussion

Community Comments

Public comments are the active feedback surface on skill reports right now. Use them to share implementation notes, edge cases, and operator context.

0 comments

Sign in to comment on this skill

No comments yet. Be the first to share your thoughts.

Continue the workflow

Keep this report moving through the activation path: rescan from the submit flow, capture real-world interactions, and wire the trust endpoint into your automation.

Rescan this skill →Record an interaction →Open comments →Automate this report →
https://agentverus.ai/api/v1/skill/eaff3eeb-9961-44bf-b756-a05a4b96c650/trust
Personalized next commands

Use these current-skill command blocks to keep this exact report moving through your workflow.

Record an interaction
curl -X POST https://agentverus.ai/api/v1/interactions \
  -H "Authorization: Bearer at_your_api_key" \
  -H "Content-Type: application/json" \
  -d '{"agentPlatform":"openclaw","skillId":"eaff3eeb-9961-44bf-b756-a05a4b96c650","interactedAt":"2026-03-15T12:00:00Z","outcome":"success"}'
Fetch trust JSON
curl https://agentverus.ai/api/v1/skill/eaff3eeb-9961-44bf-b756-a05a4b96c650/trust

Category Scores

94
Permissions
100
Injection
92
Dependencies
97
Behavioral
70
Content
100
Code Safety

Findings (4)

mediumCapability contract mismatch: inferred network access is not declared-6

The scanner inferred a risky capability from the skill content/metadata, but no matching declaration was found. Add a declaration with a clear justification, or remove the behavior.

Content pattern: https://music.youtube.com

Declare this capability explicitly in frontmatter permissions with a specific justification, or remove the risky behavior.

permissionsASST-04
mediumUnknown external reference-8

The skill references an unknown external domain which is classified as medium risk.

https://music.youtube.com

Verify that this external dependency is trustworthy and necessary.

dependenciesASST-04
lowNo explicit safety boundaries-10

The skill does not include explicit safety boundaries defining what it should NOT do.

No safety boundary patterns found

Add a 'Safety Boundaries' section listing what the skill must NOT do (e.g., no file deletion, no network access beyond needed APIs).

contentASST-09
lowFederated auth flow detected (inside code block)-3

Found federated auth flow pattern: "oauth"

- Authentication file (`oauth.json` or `browser.json`) in the skill folder.

Treat OAuth, 2FA, and token-refresh guidance as authentication-sensitive workflows. Explain scope, storage, and refresh behavior clearly so agents do not handle more credential material than necessary.

behavioralASST-05