ClawHub
Back to skill
v1.0.0

Music Tagger

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 6:32 AM.

Analysis

This appears to be a purpose-aligned local music tagging/organizing tool, with expected file changes and local backup state but no evidence of credential use, networking, exfiltration, or hidden behavior.

GuidanceThis skill looks safe to review as a local file utility, but treat it like any bulk file organizer: use preview mode, keep backups of important music files, verify the input/output directories, and install optional dependencies only from trusted sources.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation
SeverityLowConfidenceHighStatusNote
music_tagger.py
confirm = input(f"即将整理 {len(mappings)} 个音乐文件,确认吗?(y/N): ") ... copy2(old_path, new_path) ... new_path.unlink()

The script can perform bulk local file operations, including copying organized music files and deleting organized copies during undo. This is expected for a music organizer and is partly confirmation-gated, but users should recognize it can change files.

User impactIf used on the wrong folder or with mistaken options, the tool could copy files into new folders or remove organized copies during undo.
RecommendationUse preview mode first, run it on a test or backed-up music folder, and check the selected input and output directories before confirming bulk operations.
Agentic Supply Chain Vulnerabilities
SeverityInfoConfidenceHighStatusNote
SKILL.md
pip install mutagen

The documentation recommends a user-run installation of an external Python dependency without pinning a version. This is common for a Python utility and is not automatic, but it is still supply-chain-relevant.

User impactInstalling external packages can introduce whatever version is currently available from the package source.
RecommendationInstall dependencies from trusted package indexes, preferably in a virtual environment, and pin or review package versions if reproducibility matters.
Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Memory and Context Poisoning
SeverityLowConfidenceHighStatusNote
music_tagger.py
self.backup_file = self.output_dir / ".music-tagger-backup.json" ... json.dump(mappings, f, indent=2, ensure_ascii=False)

The tool persists a local JSON backup mapping source and target music file paths for undo. This is purpose-aligned, but it records local file names and paths.

User impactThe backup file may reveal music library paths or filenames if the output folder is shared or synced.
RecommendationKeep the output folder private if filenames or paths are sensitive, and delete the backup file when undo is no longer needed.