Back to skill
Skillv1.0.1
ClawScan security
Amadeus · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 22, 2026, 11:10 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is an instruction-only wrapper that tells the agent how to use the Membrane CLI to interact with Amadeus; its requirements and instructions are coherent with its stated purpose.
- Guidance
- This skill is instruction-only and appears coherent with its purpose, but before installing or using it: 1) Verify the @membranehq/cli package and publisher on npm and the repository (confirm it is the official Membrane project). 2) Consider running the global npm install in an isolated environment (container/VM) if you are cautious about third-party packages. 3) When you run `membrane login`, check what permissions and scopes are being granted and confirm you trust Membrane's service and privacy policy (data forwarded to Membrane will be handled by their backend). 4) Confirm the connectorKey 'amadeus' corresponds to the official Amadeus integration you expect. If you need stronger guarantees, request source code or a vendor security/attestation document from the publisher.
Review Dimensions
- Purpose & Capability
- okThe name/description (Amadeus integration) match the instructions: all runtime steps use the Membrane CLI to create a connection to an Amadeus connector and run actions. Nothing in the SKILL.md requests unrelated cloud credentials, binaries, or config paths.
- Instruction Scope
- okThe SKILL.md confines the agent to installing/using the Membrane CLI, logging in via Membrane, creating a connection, discovering and running actions, and polling for action build state. It does not instruct reading arbitrary local files, harvesting environment variables, or exfiltrating data to unexpected endpoints. It does require network access and an interactive login flow.
- Install Mechanism
- noteNo automated install spec is present (instruction-only). The doc recommends running `npm install -g @membranehq/cli@latest`. Installing a global npm package is a standard user action but carries the normal npm risk (running third-party code on install). Verify the @membranehq/cli package and its publisher before installing, or run it in an isolated environment.
- Credentials
- okThe skill declares no required environment variables or primary credential. It relies on the Membrane hosted auth flow (Membrane account) rather than asking for API keys. This is proportional to the described purpose. Users should still confirm what account-level permissions Membrane requests during login.
- Persistence & Privilege
- okalways is false and there is no install-time code or files created by the skill itself. The skill is instruction-only and does not request elevated or system-wide configuration changes. Note: the platform default allows autonomous invocation, which is normal and not a problem here given the limited footprint.