Cloudtables
Security checks across static analysis, malware telemetry, and agentic risk
Overview
This is a disclosed CloudTables integration, but it installs a Membrane CLI, uses account authentication, and can read, update, or delete CloudTables data.
Before installing, make sure you trust the Membrane CLI package and are comfortable giving it authenticated access to the intended CloudTables account. Use precise prompts for the dataset and rows involved, and manually confirm any update, delete, or broad data-retrieval operation.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Installing a global CLI gives that package local execution ability and future installs may differ from what was reviewed.
The skill asks the user to install a global npm CLI package at the latest version; this is central to the skill but is not pinned to a reviewed version.
npm install -g @membranehq/cli@latest
Install only from a trusted npm source, consider pinning a known-good version, and review the CLI before using it in sensitive environments.
The agent may be able to act through an authenticated Membrane/CloudTables connection with the user's account permissions.
The skill requires logging into Membrane so it can create or use a CloudTables connection.
membrane login --tenant --clientName=<agentType>
Use the least-privileged CloudTables account or role available, connect only the intended tenant, and revoke the connection when it is no longer needed.
Mistaken or overly broad instructions could create, change, or delete CloudTables records.
The documented action set includes data mutation and deletion, which is expected for a CloudTables management integration but can affect business data.
| Delete Row | delete-row | Delete a row from a data set. |
Confirm dataset names, row IDs, and inputs before running create, update, delete, or bulk-style actions; keep backups for important data.
CloudTables request data and authenticated API operations may pass through Membrane as well as CloudTables.
The skill routes authenticated CloudTables API requests through Membrane's proxy, making Membrane part of the data and credential-handling path.
send requests directly to the CloudTables API through Membrane's proxy...injects the correct authentication headers
Use this only if you are comfortable with Membrane mediating CloudTables API calls, and avoid sending unnecessary sensitive table data.