Back to skill
Skillv1.2.1
ClawScan security
CD 转 FLAC 音频转换器 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 29, 2026, 4:29 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- This skill appears to do what it says — convert RAR/WAV+CUE CD archives to per-track FLACs and optionally fetch lyrics — but it will read/modify/delete local music files and send song metadata to third‑party lyric services, and it embeds a hardcoded anonymous token for Netease calls.
- Guidance
- Before installing or running this skill: 1) Back up any music you care about — the conversion can delete original WAV/CUE/RAR files. Use --dry-run first to preview actions. 2) Ensure the listed system packages (unrar, cuetools/shntool, flac) and Python deps (mutagen, pycryptodome) are installed from trusted repositories. 3) Be aware lyrics fetching sends song titles/artists/paths to third-party services (Netease and Kugou); Kugou calls in the bundled code use HTTP (not encrypted). If you have privacy concerns, disable --lyrics or review/modify scripts/lyric.py to remove/replace the network calls. 4) Note the script includes a hardcoded ANON_TOKEN and AES key used for Netease linuxapi calls — this is not a secret requested from you, but embedding tokens in code is brittle and could be replaced if you prefer to supply your own credentials. 5) Run the tool on a small sample first and inspect outputs before running on a large library.
Review Dimensions
- Purpose & Capability
- okThe name/description match the included code and runtime instructions: the scripts extract RARs, parse CUE files (including GBK handling), split WAVs into FLAC, rename/organize tracks, and optionally fetch/inject synced lyrics. Required system tools and Python packages listed in SKILL.md (unrar, cuetools/shntool, flac, mutagen, pycryptodome) are consistent with the declared functionality.
- Instruction Scope
- noteThe SKILL.md and scripts legitimately instruct the agent to read directories, open CUE/WAV/FLAC files, create/move/delete files, and call external binaries (unrar, shnsplit, etc.). These file operations (including optional deletion of RAR/WAV/CUE) are expected for this task but are destructive operations — user should back up data and run with --dry-run first. The lyrics feature performs network requests to third‑party services which is expected for fetching lyrics.
- Install Mechanism
- okThere is no install spec (instruction-only), and the package includes Python scripts. Runtime dependencies are listed for apt and pip. This is proportionate: no downloads from untrusted URLs, no installers or archive extraction from remote servers are present in the skill bundle itself.
- Credentials
- concernThe skill does not request environment variables or external credentials, which matches its purpose. However, the lyric provider embeds a hardcoded AES key (LINUXAPI_KEY) and a long ANON_TOKEN cookie value in scripts/lyric.py. While these are used solely to call the Netease linuxapi endpoint, hardcoded tokens are a maintenance and privacy concern (they can be abused if misused, may stop working, and make calls appear from the same anonymous session). Also, some Kugou endpoints are called over plain HTTP (no TLS), which can expose request metadata to network observers.
- Persistence & Privilege
- okThe skill is not always-enabled and is user-invocable; it does not request persistent platform privileges. It does not modify other skills or system-wide agent settings. Autonomous invocation is allowed (platform default) but not combined here with other high-risk flags.