ClawHub

Gorgias

v1.0.0

Gorgias integration. Manage data, records, and automate workflows. Use when the user wants to interact with Gorgias data.

0· 35·0 current·0 all-time
byVlad Ursul@gora050
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description state it integrates with Gorgias and the SKILL.md exclusively instructs use of the Membrane CLI and a Membrane account to connect, list, and run actions against Gorgias. There are no unrelated credentials, binaries, or config paths requested.
Instruction Scope
Instructions focus on installing and using the Membrane CLI (login, create connection, list actions, run actions, proxy requests). They do not instruct reading unrelated files or accessing unrelated environment variables. The proxy feature will send requests through Membrane (expected for this integration).
Install Mechanism
No formal install spec in the package, but the SKILL.md instructs running npm install -g @membranehq/cli (a public npm package). This is a reasonable and expected mechanism for this CLI-based integration but carries the usual risks of installing a global npm package (execute-at-install, PATH changes).
Credentials
The skill declares no required env vars or local credentials and instead relies on a Membrane account and browser-based auth flows. That is proportionate to the stated functionality. Note: using the CLI means Gorgias data and auth flows are handled by Membrane's service.
Persistence & Privilege
Skill is instruction-only, not always-enabled, and does not request persistent system privileges or modify other skills. It does rely on an external CLI and network access but requests no elevated platform permissions.
Assessment
This skill is coherent: it delegates Gorgias access to the Membrane CLI/service. Before installing/using it, verify you trust Membrane (getmembrane.com) because API calls and credentials are proxied through their service; review their privacy/security docs. Prefer using npx or inspecting the @membranehq/cli package (repository, maintainers, package version) instead of blindly running a global npm install. Be aware the CLI’s browser-based login and proxying mean Gorgias data will transit through Membrane — if that is a concern, perform a risk review or use direct Gorgias credentials with a tool you control. Finally, because the skill is instruction-only, the agent will only perform actions if you (or an agent allowed to invoke skills) run the CLI and provide the connection; confirm you’re comfortable with that behavior.

Like a lobster shell, security has layers — review code before you run it.

latestvk978npb0rf1g3erejmrb1wy86n849x7n

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments