ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Announcekit

v1.0.2

AnnounceKit integration. Manage data, records, and automate workflows. Use when the user wants to interact with AnnounceKit data.

0· 105·0 current·0 all-time
byVlad Ursul@gora050
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The name/description (AnnounceKit integration) matches the instructions: it uses Membrane as a proxy to talk to AnnounceKit. However the SKILL.md requires the Membrane CLI (npm package) but the skill metadata declares no required binaries or install — an omission/inconsistency.
Instruction Scope
Runtime instructions are narrowly scoped to using the Membrane CLI to list/connect/run actions or proxy HTTP requests to AnnounceKit; they don't ask the agent to read unrelated files or exfiltrate secrets. They direct the user to authenticate via browser or headless flow handled by Membrane.
!
Install Mechanism
There is no install spec in the registry, but SKILL.md tells users to run 'npm install -g @membranehq/cli' (a global npm install). That writes binaries to disk and may require network/npm access — this is a non-declared install step and thus a point of friction/risk. The instruction to install a global npm package should be declared explicitly and audited (verify package publisher and npm page).
Credentials
The skill requests no environment variables or credentials in the manifest and explicitly advises relying on Membrane-managed connections rather than asking users for API keys. Using Membrane means credentials are held by Membrane rather than this skill locally (reasonable for this purpose).
Persistence & Privilege
The skill is not always-enabled, is user-invocable, and does not request persistent system privileges. There are no instructions to modify other skills or system-wide agent config.
What to consider before installing
This skill is an instruction-only integration that expects you to use the Membrane CLI to talk to AnnounceKit. Before installing or running it: - Verify the Membrane CLI package (@membranehq/cli) on npm and confirm the publisher and package README match the SKILL.md instructions. A malicious or typo-squatted npm package could be risky. - Note the manifest omission: the skill metadata didn’t declare the required binary/install step. Treat the npm global install as an explicit action you must approve (global installs modify your system PATH). - Prefer running the CLI in a controlled environment (container, VM, or dedicated machine) if you’re unsure about installing global packages on your main workstation. - Understand that credentials will be handled by Membrane (browser login or headless flow). If you don’t trust Membrane or the account, don’t proceed. - If you need higher assurance, ask the skill author/owner for a signed repository link or an explicit install specification and for confirmation that the npm package is the official one. Confidence is medium because there are no direct malicious indicators in the SKILL.md, but the manifest/install inconsistency and the global npm install instruction are notable risks that deserve user verification.

Like a lobster shell, security has layers — review code before you run it.

latestvk9738khnvnn8zcdq4rsd2vxxcd8429g6

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments