Skillv1.0.1

ClawScan security

Batch Renamer · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousMar 20, 2026, 3:46 PM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill's code implements a local Python batch renamer (no secrets or network access), but the documentation/instructions contain mismatches (npm install, JavaScript regex) and the implementation has bugs/inconsistencies — review and test before use.
Guidance: This package appears to be a local Python batch-renamer and does not try to exfiltrate data or access secrets — but there are coherence problems you should consider before installing or running it: - Documentation vs implementation mismatch: SKILL.md/README advise 'npm install -g batch-renamer' and state JavaScript regex syntax, while the bundled file is a Python script (batch_renamer.py). Do NOT run npm install unless you intend to install an npm package from the registry; that could fetch unrelated code. - Implementation bugs: apply_regex uses 're.GLOBAL' (which doesn't exist) and mixes JavaScript-style 's/.../.../' parsing with Python's re library. This will likely cause regex failures or exceptions. Expect to test with --preview first. - Safe testing steps: run the Python script directly (python3 batch_renamer.py) in a safe, small test directory or copy of your files; always use the --preview flag first to verify mappings; check the .batch-renamer-backup.json file before executing; keep a manual backup of important files. - Additional verification: if you plan to install a globally published package, confirm the package author and inspect the package contents (npm registry or source repo). If this skill will be used by others or in production, ask the author for provenance or a trusted release; resolving the npm vs python mismatch and fixing the regex handling would increase confidence. If you want, I can: 1) point out the exact lines to fix in apply_regex, 2) produce a corrected version of the script that properly supports 's/old/new/g' semantics in Python, or 3) draft safer installation/run instructions that avoid npm ambiguity.

Review Dimensions

Purpose & Capability: noteThe stated purpose (batch renaming with preview and undo) matches the included Python script: it lists files, generates names, writes a local backup file, renames, and can undo. However the SKILL.md/README recommend npm installation and claim JavaScript regex syntax, which does not cleanly match the Python implementation.
Instruction Scope: concernSKILL.md instructs npm install -g and describes JavaScript-style regex usage; the actual runtime instructions in the Python script expect running python3 batch_renamer.py. The docs encourage using 's/.../.../' style regexes, and the script attempts to parse that form, but its implementation is incorrect (uses non-existent re.GLOBAL and mixes JS-style expectations with Python re). This is scope/instruction mismatch and can cause surprising failures.
Install Mechanism: concernNo install spec is provided in the skill manifest (instruction-only), but SKILL.md shows an 'npm install -g batch-renamer' command. Because there's no declared install mechanism and the included code is Python, the npm instruction is misleading and could lead users to install an unrelated npm package (which would be a separate security risk).
Credentials: okThe skill requests no environment variables, no credentials, and no config paths. Its operations are local file I/O limited to the target directory and a local backup file (.batch-renamer-backup.json), which is proportionate to its stated purpose.
Persistence & Privilege: okThe skill does not request persistent/global privileges or 'always' inclusion. It stores a backup mapping file in the target directory (expected for undo support) and does not modify other skills or system-wide settings.