ClawHub

Freshmarketer

v1.0.2

Freshmarketer integration. Manage Leads, Persons, Organizations, Deals, Pipelines, Activities and more. Use when the user wants to interact with Freshmarkete...

0· 85·0 current·0 all-time
byVlad Ursul@gora050
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Pending
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description (Freshmarketer integration) matches the instructions: all actions are performed via the Membrane CLI which acts as a proxy to Freshmarketer APIs. No unrelated credentials, binaries, or paths are requested.
Instruction Scope
SKILL.md only instructs installing and using the Membrane CLI, creating connections, listing actions, running actions, and proxying requests to Freshmarketer. It does not direct reading unrelated files, harvesting env vars, or sending data to unknown endpoints beyond Membrane/Freshmarketer.
Install Mechanism
There is no formal install spec, but the SKILL.md recommends installing @membranehq/cli via npm (-g). Installing a global npm package is a sensible and expected mechanism for CLI usage but it writes executables to the system and runs third-party code from the npm registry — verify package provenance and consider installing in a controlled environment.
Credentials
The skill declares no required environment variables or credentials; it relies on Membrane for auth. This is proportionate to a connector-style integration — no extra or unrelated secrets are requested.
Persistence & Privilege
The skill is not forced-always and does not request to modify other skills or system-wide settings. It relies on the Membrane CLI and the user's auth session, which is normal for this type of integration.
Assessment
This skill is instruction-only and coherent with its stated purpose, but take these precautions before installing: (1) verify the @membranehq/cli package and its repository on npm/GitHub to ensure you trust the publisher; (2) installing npm -g modifies your PATH and installs executable code — consider using a sandboxed environment, container, or a user-local npm install if you prefer; (3) Membrane handles authentication and will store/refresh credentials for the Freshmarketer connection — review where Membrane stores tokens and what scope it requests before authorizing; (4) because Membrane proxies requests, a compromise of that service or a misconfigured connection could expose Freshmarketer data — limit access and monitor activity; (5) no unexpected env vars or system file accesses are requested by the skill. If you need deeper assurance, ask the publisher for the exact npm package URL, the Membrane CLI docs, or an installation checklist.

Like a lobster shell, security has layers — review code before you run it.

latestvk97b2kedxdc26x4zf30vt2apsn843qxw

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments