ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Botconversa

v1.0.2

BotConversa integration. Manage data, records, and automate workflows. Use when the user wants to interact with BotConversa data.

0· 99·0 current·0 all-time
byVlad Ursul@gora050
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The skill's name and description match the runtime instructions: it uses Membrane to interact with BotConversa. However, the registry metadata claims 'Required binaries: none' while the SKILL.md explicitly instructs installing and running the 'membrane' CLI. That mismatch is an incoherence — the skill effectively requires the Membrane CLI to function.
Instruction Scope
The instructions stick to the stated purpose: installing the Membrane CLI, logging in, creating/using a connection, listing and running actions, and proxying API calls through Membrane. There are no instructions to read unrelated local files or environment variables, nor to exfiltrate data to unexpected endpoints.
Install Mechanism
There is no formal install spec in the registry (the skill is instruction-only). The SKILL.md asks the user to run 'npm install -g @membranehq/cli' — an npm global install from the public registry. Installing a global npm package is a reasonable way to install a CLI but carries moderate risk (postinstall scripts, elevated privileges if using sudo, and trusting the package publisher). The metadata did not declare this binary requirement or the install step.
Credentials
The skill requests no environment variables or credentials in metadata and the instructions explicitly tell the user not to provide API keys directly (use Membrane connections). It relies on user-authenticated browser login flows managed by Membrane, which is consistent and proportionate to its purpose.
Persistence & Privilege
The skill does not request always:true and does not attempt to modify other skills or system-wide agent settings. It is user-invocable and allows autonomous invocation (the platform default). Nothing in the SKILL.md asks for permanent presence or special privileges.
What to consider before installing
This skill appears to do what it says: it uses the Membrane CLI to manage BotConversa data. Before installing or using it, verify you trust the @membranehq CLI package (check the npm page, GitHub repo, and publisher identity). Note the SKILL.md requires installing a global npm package even though the registry metadata doesn't list required binaries — installing global npm packages can run postinstall scripts and may need elevated privileges. If you operate in a sensitive environment, avoid global installs or run them in an isolated environment/container. Confirm the browser-based login and connection flows are acceptable for your security posture, and prefer using Membrane's managed connection instead of providing raw API keys. If you need higher assurance, ask the author/maintainer to update the skill metadata to declare the 'membrane' CLI as a required binary and to provide a signed release or verification steps for the CLI.

Like a lobster shell, security has layers — review code before you run it.

latestvk976m5y9v7awvd5cghaq1m7b69843n13

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments