ClawHub

Gloria Ai

v1.0.2

Gloria AI integration. Manage data, records, and automate workflows. Use when the user wants to interact with Gloria AI data.

0· 83·0 current·0 all-time
byVlad Ursul@gora050
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Pending
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description say 'Gloria AI integration' and the instructions consistently use the Membrane CLI to discover connectors, create connections, run actions, and proxy requests to Gloria — the required tools and workflow align with the stated purpose.
Instruction Scope
SKILL.md stays within integration tasks (login, connect, action list/run, proxy). It does instruct the agent/operator to issue arbitrary proxy requests via Membrane (membrane request /path), which is powerful but coherent for an integration skill; it does not instruct reading unrelated files or pulling unrelated environment variables.
Install Mechanism
There is no automated install spec in the registry (instruction-only). The readme tells users to install the official @membranehq/cli via npm -g and also suggests npx @membranehq/cli@latest in examples. Installing or npx'ing packages from npm is expected for this workflow but does carry normal supply-chain risk (especially npx @latest which fetches remote code at runtime).
Credentials
The skill declares no required env vars or credentials and explicitly delegates auth to Membrane (browser login flow). That matches its stated behavior and is proportionate to the integration task.
Persistence & Privilege
Skill is user-invocable, not always-on, and doesn't request modification of other skills or system-wide settings. It doesn't demand persistent privileges beyond normal CLI usage and a Membrane account.
Assessment
This skill is coherent and appears to do what it says: integrate with Gloria AI via the Membrane CLI. Before installing or running commands, verify the Membrane project (npm package and GitHub repo) and the homepage to ensure you trust the vendor. Be aware that installing packages with npm -g modifies your system, and using npx @membranehq/cli@latest pulls the latest remote code each time (supply-chain risk). The skill's proxy capability (membrane request) can issue arbitrary API calls using the connection — that's expected for an integration but powerful, so only connect accounts you intend to expose via Membrane and review the actions returned by membrane action list before running them.

Like a lobster shell, security has layers — review code before you run it.

latestvk976eg3x27562j54kdgrj4jhjh842g8c

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments