Gender Api
v1.0.2Gender API integration. Manage Persons. Use when the user wants to interact with Gender API data.
⭐ 0· 119·0 current·0 all-time
byVlad Ursul@gora050
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
The skill's name and description match the instructions: it teaches the agent to use Membrane to interact with Gender API. Minor metadata inconsistency: the skill metadata lists no required binaries, but the runtime instructions explicitly require installing and running the `membrane` CLI (npm global package). This is explainable (instruction-only skill) but worth noting.
Instruction Scope
SKILL.md confines actions to installing/using the Membrane CLI, creating/listing connections, running pre-built actions, and proxying requests to the Gender API. It does not instruct reading unrelated files, environment variables, or exfiltrating data outside the described flow. One expected capability: the proxy mode allows arbitrary HTTP calls to the target API (intended for flexibility).
Install Mechanism
No formal install spec is included (instruction-only). The doc asks the user to run `npm install -g @membranehq/cli` — that is a public npm package install, which is a common but higher-risk install step than an instruction-only skill because it executes third-party code on the machine. The package name appears to be from the @membranehq org (official-sounding), but users should verify the package/source before global installation.
Credentials
The skill declares no required environment variables or credentials. It relies on Membrane to handle authentication and instructs creating connections rather than asking for raw API keys, which is proportionate and appropriate for this integration.
Persistence & Privilege
The skill is instruction-only, does not request permanent presence (always: false), and does not modify other skills or system-wide settings. Model invocation is not disabled (default) but that is the platform default and not concerning here given the limited scope.
Assessment
This skill appears coherent with its stated purpose, but before installing or following its steps you should: (1) verify you trust Membrane and the npm package (@membranehq/cli) — inspect the package repository and npm publisher; (2) be aware that you will install and run third-party code globally (npm -g), which runs with your user privileges; (3) understand privacy implications: Gender inference can be sensitive and may have legal/regulatory implications depending on your users and jurisdiction — avoid sending personal data you cannot lawfully process; (4) prefer creating connections through Membrane rather than pasting API keys locally (as the doc recommends); and (5) test in a non-production environment first. If you want stronger guarantees, ask for: the exact npm package version to install, a link to the official CLI repository/release, and documentation for how Membrane stores/handles credentials.Like a lobster shell, security has layers — review code before you run it.
latestvk97b1ksbnss18gav4v1ed80rk58424jj
License
MIT-0
Free to use, modify, and redistribute. No attribution required.