Back to skill
Skillv1.0.1
ClawScan security
Castmagic · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 22, 2026, 12:33 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requirements and runtime instructions match its stated purpose (using the Membrane CLI to interact with Castmagic) and do not request unrelated credentials or perform unexpected actions.
- Guidance
- This skill is coherent: it uses the Membrane CLI to connect to Castmagic and does not ask for unrelated secrets. Before installing, verify you trust the '@membranehq/cli' package and the getmembrane.com project (check the npm package page and the GitHub repo referenced in SKILL.md). Install the CLI in an environment you control (not a sensitive production host) because npm -g writes executables to disk. During login you'll complete an OAuth/browser flow — review the OAuth scopes and permissions granted. If you plan to let an autonomous agent invoke this skill, ensure you trust Membrane and the connector behavior, since the agent can run the CLI commands described here.
Review Dimensions
- Purpose & Capability
- okName/description (Castmagic integration) align with instructions: the SKILL.md explains how to use the Membrane CLI to connect to Castmagic, discover and run actions. There are no unrelated required env vars, binaries, or config paths.
- Instruction Scope
- okRuntime instructions are focused on installing and using the Membrane CLI (login, connect, action list/create/run). They do not instruct reading unrelated files or exfiltrating data, nor do they request arbitrary secrets; they rely on browser/OAuth flows handled by Membrane.
- Install Mechanism
- noteThe SKILL.md asks the user/agent to run 'npm install -g @membranehq/cli@latest' (a public npm package). This is a standard install for a CLI integration but does write code to disk and runs third-party code. The instruction is proportionate to the skill's functionality, but users should verify the package source and trustworthiness of @membranehq before installing globally.
- Credentials
- okThe skill declares no required environment variables or credentials. The instructions explicitly tell users to use Membrane to manage auth (OAuth/browser flow) and advise against asking for API keys, which is consistent and appropriate.
- Persistence & Privilege
- okalways is false and the skill does not request or instruct modification of other skills or system-wide agent settings. The skill does prompt installing a CLI (local persistence) but does not demand elevated platform privileges.