Trust Assessment
ytmusic-librarian received a trust score of 79/100, placing it in the Mostly Trusted category. This skill has passed most security checks with only minor considerations noted.
SkillShield's automated analysis identified 2 findings: 0 critical, 1 high, 1 medium, and 0 low severity. Key findings include Insecure storage of YouTube Music authentication tokens, Unpinned Python dependency.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on February 13, 2026 (commit 13146e6a). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings2
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| HIGH | Insecure storage of YouTube Music authentication tokens The skill setup instructions guide the user to generate and store sensitive authentication data (`headers.txt` containing a cURL command with session cookies/tokens, and `browser.json` containing derived authentication tokens) directly within the skill's working directory. These files grant full access to the user's YouTube Music account and are highly vulnerable to unauthorized access if the skill's environment is compromised or if the skill has broad filesystem read permissions. Storing credentials in plain text files within the application's working directory is a significant security risk. Advise users to store credentials in a secure, isolated location (e.g., environment variables, a dedicated secrets management service, or a restricted-access directory) and ensure the skill only accesses them via secure APIs, not direct file reads from its working directory. Implement proper access controls for credential files and educate users on the risks of storing sensitive data locally. | LLM | SKILL.md:22 | |
| MEDIUM | Unpinned Python dependency The `ytmusicapi` Python library is instructed to be installed without specifying a version (`pip install ytmusicapi`). This can lead to supply chain risks, including unexpected behavior, compatibility issues, or the introduction of vulnerabilities if a new, unvetted, or even malicious version is pulled in the future. Without a pinned version, the integrity and security of the dependency cannot be guaranteed over time. Pin the dependency to a specific version (e.g., `pip install ytmusicapi==X.Y.Z`) to ensure reproducible builds and mitigate risks from unexpected or malicious updates. Regularly review and update pinned dependencies after thorough vetting. | LLM | SKILL.md:10 |
Scan History
Embed Code
[](https://skillshield.io/report/95276c29659c2227)
Powered by SkillShield