Skillv1.0.1

ClawScan security

Datto Autotask · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignApr 22, 2026, 5:08 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's required actions and instructions (installing and using the Membrane CLI to connect to Datto Autotask) align with its stated purpose and do not request unexplained credentials or file access.
Guidance: This skill is coherent: it instructs you to install and use the Membrane CLI to connect to Datto Autotask and relies on Membrane to manage credentials. Before installing, verify the @membranehq/cli package and Membrane's privacy/security posture (npm page and GitHub repo), consider using npx or pinning a specific CLI version instead of -g for fewer system changes, and create or use a least-privilege Datto Autotask account when granting access. If you operate in a shared or restricted environment, confirm that installing global npm packages is acceptable. Finally, review Membrane's terms/privacy and confirm you are comfortable granting that third-party service access to your Autotask data.

Review Dimensions

Purpose & Capability: okThe skill is an integration for Datto Autotask and its instructions consistently use the Membrane CLI to discover, build, and run actions against Datto Autotask. Required capabilities (network access and a Membrane account) match the described functionality.
Instruction Scope: okSKILL.md only instructs the agent to install and run the Membrane CLI, authenticate via the Membrane service, create connections, and list/run actions. It does not ask the agent to read unrelated local files, export arbitrary environment variables, or exfiltrate data to unexpected endpoints beyond Membrane.
Install Mechanism: noteInstallation is an npm global install (npm install -g @membranehq/cli@latest) or using npx in examples. This is a standard distribution mechanism but has moderate risk compared to instruction-only skills because it installs code on the host. Recommend verifying the @membranehq/cli package source (npm/GitHub) and using npx or pinning a version for more control.
Credentials: okThe skill declares no required environment variables or credentials and explicitly instructs the user to rely on Membrane-managed connections rather than collecting API keys locally. Requesting a Membrane account and interactive login is proportionate to the integration's purpose.
Persistence & Privilege: okThe skill does not request always:true or other elevated persistence. It is user-invocable and uses the normal autonomous-invocation default of the platform; that is expected for skills and does not introduce additional privilege on its own.