ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Currencycloud

v1.0.2

Currencycloud integration. Manage data, records, and automate workflows. Use when the user wants to interact with Currencycloud data.

0· 61·0 current·0 all-time
byVlad Ursul@gora050
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Pending
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The skill's stated purpose (Currencycloud integration) matches the SKILL.md instructions (use Membrane to connect and proxy Currencycloud API calls). However, the registry metadata declares no required binaries or install steps while the instructions explicitly require installing the @membranehq/cli (npm) and using `membrane`/`npx`. That mismatch is an inconsistency the user should be aware of.
Instruction Scope
The SKILL.md stays within the Currencycloud integration scope: it tells the agent to install and use Membrane CLI, perform connector discovery, run actions, and proxy API requests. It does not instruct the agent to read local files, access unrelated environment variables, or exfiltrate local data. It does direct the user/agent to authenticate to Membrane via browser (or headless flow).
Install Mechanism
This is an instruction-only skill (no install spec), but the instructions tell the user to run `npm install -g @membranehq/cli` and use `npx`. Because there's no formal install spec in the registry, that install step is not declared up-front. Installing global npm packages / running npx can pull code from the public registry—moderate risk if you don't trust the package/source. SKILL.md references known sources (npm, npx, Membrane), not arbitrary URLs.
Credentials
No environment variables or credentials are declared by the registry. The SKILL.md explicitly says Membrane handles credentials server-side and advises never to ask users for API keys. This is proportionate, but it means sensitive credentials and API traffic will flow through Membrane's servers—users should evaluate trust/privacy implications.
Persistence & Privilege
The skill does not request always:true or any elevated persistent privileges. It's user-invocable and can be invoked autonomously by the agent (the platform default), which is normal. The skill does not attempt to modify other skills or system-wide settings in its instructions.
What to consider before installing
This skill appears to be a straightforward Currencycloud integration that relies on the Membrane platform, but the registry metadata omits that requirement. Before installing or using it: (1) confirm you are comfortable installing the @membranehq/cli (global npm install) and running `npx` commands; (2) understand that authentication and API calls will be proxied through Membrane—review Membrane's privacy/security posture and use test/sandbox Currencycloud credentials if possible; (3) prefer pinned CLI versions (avoid unconstrained `npx ...@latest`) to reduce supply-chain risk; (4) verify the homepage/repository (getmembrane.com and the linked GitHub) are legitimate and review Membrane's docs; and (5) if you need to keep credentials or data local, this skill may not be appropriate. The main technical issue is an omission in the registry metadata (missing declared required binary/install steps), not clear evidence of malicious behavior.

Like a lobster shell, security has layers — review code before you run it.

latestvk978fdx4fcc9p79xtbsvcrw6fd843gj4

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments