Back to skill
Skillv1.0.3
ClawScan security
Even Financial · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 22, 2026, 9:22 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is internally consistent: it describes an Even Financial integration and its SKILL.md instructs the agent to use the Membrane CLI to connect and run actions; required credentials and behavior align with that purpose.
- Guidance
- This skill appears to do what it says: it uses the Membrane CLI to connect to Even Financial. Things to consider before installing: 1) The SKILL.md expects you to install/run the @membranehq/cli package (npm/npx), so ensure you trust that package and the Membrane vendor (check the npm package page and GitHub repo). 2) Prefer using npx or a scoped/virtual environment rather than a global npm -g install if you want to limit system-wide changes. 3) The integration requires a Membrane account and will route auth through Membrane — review Membrane's privacy/security docs and scopes to understand what data will be accessible. 4) Note the small manifest inconsistency: the skill instructions require npm/node but the registry metadata lists no required binaries; ensure node/npm are present and that you are comfortable installing CLI software before proceeding.
Review Dimensions
- Purpose & Capability
- noteThe skill's name and description (Even Financial integration) match the instructions (use Membrane to connect to Even Financial). Minor mismatch: the manifest lists no required binaries, but the runtime instructions require npm/node (or npx) to install/run the Membrane CLI.
- Instruction Scope
- okSKILL.md stays on-task: it only instructs installing and using the Membrane CLI, logging in, creating/using connections and actions. It does not ask the agent to read unrelated files, gather unrelated credentials, or exfiltrate data to unexpected endpoints.
- Install Mechanism
- noteThere is no formal install spec in the registry (instruction-only), but the doc instructs `npm install -g @membranehq/cli@latest` (and suggests using npx). Installing a global npm package is a standard but higher-trust operation than an instruction-only command; it will run code from the npm registry. This is expected for this integration but worth user consideration.
- Credentials
- okThe skill declares no required environment variables and the instructions explicitly say Membrane manages credentials server-side and that the agent should not ask users for API keys. The requirement for a Membrane account is proportional to the described functionality.
- Persistence & Privilege
- okSkill does not request persistent/always-on presence (always: false) and does not modify other skills or system-wide settings. Autonomous invocation is allowed (default) but presents no additional incoherence combined with other findings.