The Agent Skills Directory

[COMMAND_EXECUTION]: The skill utilizes standard command-line tools like curl and jq to interact with the Spotify Web API and process JSON responses.
[EXTERNAL_DOWNLOADS]: Retrieves music metadata and user profile information from official Spotify API endpoints at api.spotify.com.
[DATA_EXFILTRATION]: Accesses the SPOTIFY_TOKEN environment variable and retrieves user-specific data (such as top tracks and listening history) as required for the skill's intended functionality.
[INDIRECT_PROMPT_INJECTION]: The skill ingests external data from the Spotify catalog which constitutes a potential injection surface for untrusted strings (e.g., track titles or artist names).
Ingestion points: API responses from Spotify are processed in SKILL.md via curl and jq.
Boundary markers: Not explicitly used to separate retrieved data from agent instructions.
Capability inventory: Restricted to network requests via curl and local file writing to /tmp/ for query construction.
Sanitization: Standard jq parsing is used but no specific content filtering for the LLM is performed.

spotify