Specter CLI – AI powered startup and deal sourcing
PassAudited by ClawScan on May 1, 2026.
Overview
The skill is coherent for using Specter, but users should trust the external CLI source and understand that a Specter API key can access and modify account data.
Before installing, review the referenced GitHub CLI and only provide a Specter API key you are comfortable using with this agent. Confirm before running commands that delete lists or saved searches, and avoid sending sensitive files or private contact data unless that is acceptable for your Specter account.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Installing the skill requires trusting the external CLI project and its npm dependencies.
The skill relies on installing and building an external GitHub repository that is not included in the provided artifact set.
git clone git@github.com:FroeMic/tryspecter-cli.git cd tryspecter-cli npm install npm run build npm link
Review the GitHub repository and package dependencies before installing, and prefer pinned releases or a documented package source if available.
The agent or CLI can use the API key to query Specter data, consume credits, and perform authorized account operations.
The CLI needs a Specter API key, which gives access to the user's Specter account and team credit allocation, even though the registry metadata lists no required credential.
Set `SPECTER_API_KEY` environment variable ... Auth: `X-API-KEY: $SPECTER_API_KEY`
Use a scoped or revocable API key if Specter supports it, store it securely, and rotate it if it is exposed.
Mistaken use could delete useful saved searches or curated business lists in the Specter account.
The documented CLI surface includes destructive account-management operations for Specter lists and saved searches.
specter lists companies delete <listId> ... specter lists people delete <listId> ... specter searches delete <searchId>
Require explicit user confirmation before running delete, remove, or other account-changing commands.
File snippets or pasted text used for entity extraction may be sent to Specter for processing.
The skill can read local file text for entity extraction and use the external Specter API service.
specter entities search --file <path> # Extract entities from a file (max 1000 chars) Base URL: `https://app.tryspecter.com/api/v1`
Do not use the file or text extraction commands on confidential documents unless sharing that content with Specter is acceptable.