Skill audit report

Spotify Recommendation Engine audit report.

Music Recommender System

EXPERIMENTAL · REVIEWNeeds reviewGenerated Jul 3, 2026Heuristic metadata audit
61
Audit
67
Trust
50
Quality
82
Security
20
Maintain
92
Install

OpenAgentSkill Trust Score

67
Manual review

Stars, maintenance, license, docs, install safety, permission surface, and installability.

The Trust Score is OpenAgentSkill's adoption layer. It is designed to help an agent decide whether a skill is safe enough to shortlist before installation.

GitHub adoption

INFO

62

263 GitHub stars

Stars/forks activity

INFO

62

263 stars, 115 forks; issue activity unavailable in current metadata

Recent maintenance

FAIL

22

4y since push

License clarity

PASS

86

MIT

README/SKILL.md completeness

INFO

74

Public metadata needs stronger README/SKILL.md context

Dependency/runtime risk

INFO

72

credential or environment access

Install availability

PASS

92

npx skills add ucalyptus/Spotify-Recommendation-Engine

Install command safety

PASS

92

standard package or runtime install path

Permission surface

WARN

60

secrets or environment access, filesystem or document access

Repository evidence

PASS

86

https://github.com/ucalyptus/Spotify-Recommendation-Engine

Review status

PASS

88

AI review data available

Agent Proven outcomes

INFO

54

No agent outcome data yet

Checks

Install and adoption review

6 passed · 12 review

Install path

92

PASS

npx skills add ucalyptus/Spotify-Recommendation-Engine

Repository

88

PASS

https://github.com/ucalyptus/Spotify-Recommendation-Engine

License

86

PASS

MIT

Maintenance

20

FIX

4y since push

AI review

88

PASS

Approved with no listed issues

README/SKILL.md completeness

84

PASS

Usable description available

Dependency risk

72

CHECK

credential or environment access

Install command safety

92

PASS

standard package or runtime install path

Permission surface

60

CHECK

secrets or environment access, filesystem or document access

Stars/forks activity

62

CHECK

263 stars, 115 forks; issue activity unavailable in current metadata

Adoption

68

INFO

263 GitHub stars

Warnings

  • Permission surface may require sandboxing
  • Repository appears stale
  • Repository looks stale
  • Quality score needs review
  • Documentation summary is thin
  • Permission surface needs review: secrets or environment access, filesystem or document access
  • Recent maintenance: 4y since push
  • Permission surface: secrets or environment access, filesystem or document access

Method

This report combines public metadata, AI review output, repository freshness, install readiness, OpenAgentSkill events, quality scoring, trust checks, and the agent safety gate. It is not a full source-code security review.

Compare nearby options

Related skills to audit next