Back to skill
Skillv1.0.3
ClawScan security
Facebook Ads · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 21, 2026, 12:05 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is an instruction-only wrapper that directs the agent to use the Membrane CLI to manage Facebook Ads and its requirements and instructions are consistent with that purpose.
- Guidance
- This skill is coherent: it tells you to install the Membrane CLI and use Membrane to connect to Facebook Ads rather than asking for raw API keys. Before installing, verify the @membranehq/cli package and the Membrane service (npm page, GitHub repo, and getmembrane.com) to ensure you trust the publisher. Consider pinning a known-good CLI version rather than always installing @latest, and be mindful of the OAuth scopes you grant when connecting your Facebook account. If you prefer not to install global npm packages on your system, run the CLI in an isolated environment (container/VM) or skip installing and use alternative trusted tooling.
Review Dimensions
- Purpose & Capability
- okName/description state Facebook Ads management and all runtime instructions operate via the Membrane CLI and Facebook Marketing API; requested capabilities (network + Membrane account) match the stated purpose.
- Instruction Scope
- okSKILL.md confines actions to installing/using the Membrane CLI, performing Membrane login/connect, listing and running Membrane actions, and creating actions when needed. It does not instruct reading unrelated files, asking for unrelated credentials, or contacting unexpected endpoints beyond Membrane/Facebook flows.
- Install Mechanism
- noteThere is no formal install spec in the registry, but the README instructs users to run `npm install -g @membranehq/cli@latest`. This is a standard public npm install (moderate supply-chain risk); the doc does not recommend pinning a specific vetted version.
- Credentials
- okThe skill declares no required env vars or credentials and relies on Membrane to handle auth. That is proportionate to the stated functionality. The user will grant OAuth access to Facebook during the connection flow — expected for this integration.
- Persistence & Privilege
- okThe skill is instruction-only, has no install-time modifications declared, and is not marked always:true. Agent autonomous invocation is allowed by default but not unusual; the skill does not request persistent elevated privileges.