Back to skill
Skillv1.0.3
ClawScan security
Alttextai · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 22, 2026, 12:09 PM
- Verdict
- benign
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill appears to do what it claims (a Membrane-based AltText.ai integration) and its instructions stay within that purpose, but there are minor metadata / install-documentation mismatches you should be aware of before installing.
- Guidance
- Before installing/use: 1) Verify you trust Membrane/@membranehq (check npm package page and the GitHub repo linked in SKILL.md). 2) Be aware the instructions ask you to install a global npm CLI and perform a web-based login that creates a session/token via Membrane — confirm you are comfortable delegating credentials to that service. 3) Because the registry metadata omits the required binary, expect to manually install the Membrane CLI; run npm installs in a controlled environment (or container) if you prefer isolation. 4) Confirm that the connector key is 'alttextai' and that actions returned by Membrane match the operations you expect (list, search, generate alt text). 5) If you need higher assurance, ask the publisher for an explicit install spec or for the skill to declare the membrane CLI as a required binary in metadata.
Review Dimensions
- Purpose & Capability
- noteThe README/instructions clearly describe an AltText.ai integration implemented via the Membrane CLI, which aligns with the skill name and description. However, the skill metadata declares no required binaries while the SKILL.md instructs installing the @membranehq/cli globally via npm — a small mismatch between declared requirements and runtime instructions.
- Instruction Scope
- okRuntime instructions are scoped to using the Membrane CLI (login, connect, action discovery/run). They do not ask for unrelated files, host-wide credentials, or to exfiltrate arbitrary data. Authentication is handled via Membrane's login flow (browser/URL + code) and the doc explicitly advises against asking users for API keys.
- Install Mechanism
- noteThere is no formal install spec in the registry (instruction-only skill). The SKILL.md recommends installing a global npm package (npm install -g @membranehq/cli@latest). Installing a CLI from npm is common, but because the registry entry gives no install metadata you should verify the package source and trustworthiness (e.g., official @membranehq package and GitHub repo).
- Credentials
- okThe skill does not request environment variables, local config paths, or other credentials in its metadata. It relies on Membrane to manage auth server-side; this is proportionate for an integration that delegates auth to a provider.
- Persistence & Privilege
- okThe skill is not marked always:true, does not request to modify other skills or system-wide settings, and is instruction-only. The Membrane CLI will create its own auth session/token when you log in, but that behavior is part of the external CLI, not this skill's metadata.