v1.0.4

Adobe Acrobat Sign

ReviewClawScan verdict for this skill. Analyzed May 1, 2026, 6:46 AM.

Analysis

This appears to be a real Adobe Acrobat Sign connector, but it gives an agent broad authenticated ability to create, cancel, download, and proxy requests for legally significant signature workflows.

GuidanceInstall only if you want the agent to operate on Adobe Acrobat Sign data. Use a least-privileged Adobe Sign connection, verify the Membrane CLI source/version, and require explicit confirmation before any agreement creation, cancellation, reminder, upload, download, or raw proxy request.

Findings (4)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation

SeverityHighConfidenceHighStatusConcern

SKILL.md

Popular actions ... "Upload Transient Document" ... "Send Reminder" ... "Cancel Agreement" ... "Create Agreement" ... "When the available actions don't cover your use case, you can send requests directly to the Adobe Acrobat Sign API through Membrane's proxy."

The skill exposes high-impact Adobe Sign actions and a raw authenticated API escape hatch. These are aligned with the integration purpose, but they can affect legal/business signature workflows and are not visibly bounded by explicit approval or scope controls.

User impactAn agent using this skill could change signature workflows, send reminders, cancel agreements, upload documents, or make direct Adobe Sign API requests if prompted or misdirected.

RecommendationBefore installing, require explicit user confirmation for create, cancel, send, upload, download, and proxy operations; verify the target agreement/document/user before each high-impact action.

Agentic Supply Chain Vulnerabilities

SeverityLowConfidenceHighStatusNote

SKILL.md

"npm install -g @membranehq/cli@latest"

The setup instructs a global npm install using the moving @latest tag. This is central to the skill's workflow, but it increases dependence on the current npm package version and publisher integrity.

User impactInstalling a changing global CLI package can affect the local environment and may pull a newer version than the one reviewed.

RecommendationVerify the package publisher and repository, consider pinning a specific CLI version, and install in a controlled environment if possible.

Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse

SeverityMediumConfidenceHighStatusNote

SKILL.md

"Membrane handles authentication and credentials refresh automatically" and "membrane login --tenant --clientName=<agentType>"

The skill relies on delegated authentication and automatic credential refresh through Membrane. This is expected for an Adobe Sign integration, but it grants ongoing account access.

User impactThe connected account may retain access for future agent actions against Adobe Acrobat Sign.

RecommendationUse the least-privileged Adobe Sign account/connection available, review requested scopes, and revoke the Membrane connection when no longer needed.

Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Insecure Inter-Agent Communication

SeverityMediumConfidenceHighStatusNote

SKILL.md

"Download Agreement Document", "Get Agreement Form Data", "Get Agreement Audit Trail" and "send requests directly to the Adobe Acrobat Sign API through Membrane's proxy"

The skill can retrieve sensitive agreement documents, form data, and audit trails, and routes direct API requests through Membrane's proxy. This provider-mediated data flow is disclosed and purpose-aligned, but sensitive.

User impactSensitive contract, signer, and audit information may be brought into the agent session and pass through Membrane-managed connections.

RecommendationLimit retrieval to documents and fields needed for the task, avoid exposing unnecessary signer or contract data, and confirm the data handling expectations with users.