Back to skill
Skillv1.0.1
ClawScan security
Guru · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 21, 2026, 3:10 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requirements and runtime instructions are coherent with a Guru integration that uses the Membrane CLI; nothing requested appears unrelated to the stated purpose.
- Guidance
- This skill is instruction-only and appears to be what it claims: a Guru integration that uses the Membrane CLI. Before installing the CLI, verify the @membranehq/cli package and repository (the SKILL.md references https://github.com/membranedev and https://getmembrane.com), and prefer installing without elevated privileges. Because the SKILL.md instructs interactive login and browser-based auth, no API keys are required by the skill itself — do not share unrelated secrets. If you need higher assurance, review the Membrane CLI source or use a dedicated test account before granting access to production Guru data.
Review Dimensions
- Purpose & Capability
- okThe skill describes a Guru integration and its SKILL.md instructs the agent to use the Membrane CLI to connect to Guru and run actions. Asking users to install @membranehq/cli and to run membrane login/connect is consistent with the stated purpose.
- Instruction Scope
- okThe instructions are focused on installing and using the Membrane CLI, authenticating, creating connections, discovering and running actions, and best practices. They do not direct the agent to read unrelated files, access unrelated environment variables, or exfiltrate data to unknown endpoints.
- Install Mechanism
- noteThere is no automated install spec in the registry entry (instruction-only skill), but SKILL.md recommends installing the Membrane CLI via `npm install -g @membranehq/cli@latest`. A global npm install is a common way to get a CLI, but npm packages run code on install and you should verify the package source and integrity before installing.
- Credentials
- okThe skill declares no required environment variables or credentials and explicitly instructs users to let Membrane manage credentials rather than supplying API keys. Requested capabilities are proportional to the integration purpose.
- Persistence & Privilege
- okThe skill is not always-enabled and does not request persistent or system-wide configuration changes. It is user-invocable and may be invoked autonomously by the agent (platform default), which is expected for a connector skill.