Back to skill
Skillv1.0.3
ClawScan security
Affinda · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 22, 2026, 12:59 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is internally consistent: it instructs the agent to use the Membrane CLI to access Affinda via a Membrane connection and does not request unrelated credentials or perform unexpected actions — you should only need to trust the Membrane service and its CLI before installing.
- Guidance
- This skill appears coherent: it uses Membrane as a proxy to talk to Affinda and asks you to install the Membrane CLI and authenticate via Membrane. Before installing or using it, verify the Membrane CLI package (npm page and GitHub repo), confirm you trust the Membrane service to manage your Affinda credentials, and prefer installing the CLI in a controlled environment (or review its source) if you have security concerns. Do not provide Affinda API keys directly to the agent; follow the documented Membrane connection flow. If you need higher assurance, ask for the exact npm package version, check its maintainers, and inspect the CLI source code/release artifacts.
Review Dimensions
- Purpose & Capability
- noteThe skill's stated purpose is 'Affinda integration', but all runtime instructions route operations through the Membrane platform/CLI rather than calling Affinda APIs directly. This is coherent (Membrane is acting as the integration layer) but means the user must trust Membrane to manage Affinda credentials and requests.
- Instruction Scope
- okSKILL.md only instructs installing and using the Membrane CLI, logging in, creating a connection to the 'affinda' connector, listing/creating actions, and running them. It does not instruct reading unrelated files, asking for unrelated environment variables, or exfiltrating data to unexpected endpoints. The login flow requires interactive browser-based auth or a code for headless flows.
- Install Mechanism
- noteThere is no packaged install spec; the doc recommends running 'npm install -g @membranehq/cli@latest'. Global npm installs are common but grant the package system-level exec capability — verify the package's authenticity (npm listing, GitHub repo, maintainer) before installing.
- Credentials
- okThe skill declares no required environment variables or credentials. The documentation explicitly advises not to ask users for API keys and to let Membrane manage auth, which matches the declared requirements.
- Persistence & Privilege
- okThe skill is user-invocable and not always-enabled. It does not request persistent system-wide changes or access to other skills' configs. Autonomous invocation is allowed by default (not flagged) and there is no evidence here that it requests elevated persistence.