Back to skill
Skillv1.0.1
ClawScan security
Ikigai · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 22, 2026, 9:20 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's instructions, dependencies, and requested actions are coherent with its stated purpose of integrating Ikigai via the Membrane platform; it primarily instructs use of the Membrane CLI and does not request unrelated credentials or system access.
- Guidance
- This skill is coherent: it delegates auth and API handling to the Membrane platform and instructs you to install and use the @membranehq/cli. Before installing or running commands, verify you trust getmembrane.com/@membranehq and the npm package version. Be aware that any data you send via "membrane action create/run" will be processed by Membrane (server-side), so avoid sending sensitive secrets you don't want routed through that service. When logging in in headless environments, follow the documented flow and don't paste codes into untrusted chat windows. If you want extra assurance, inspect the @membranehq/cli package source (repo) and confirm the ikigai connector exists in Membrane's console/documentation.
Review Dimensions
- Purpose & Capability
- okName/description (Ikigai integration) aligns with the instructions: all runtime steps use the Membrane CLI to connect to an Ikigai connector, discover and run actions, and create actions if needed. No unrelated capabilities (cloud provider creds, system-level access) are requested.
- Instruction Scope
- noteThe SKILL.md stays within scope: it instructs installing and using the Membrane CLI, logging in via browser/URL, creating a connection for the ikigai connector, discovering/running actions, and (if needed) creating actions. It does not instruct reading arbitrary local files or requesting unrelated environment variables. Note: using Membrane means user data and action definitions will be routed through Membrane's service — users should be aware that data passed to "membrane action create/run" will be sent to Membrane.
- Install Mechanism
- noteNo install spec in the registry (skill is instruction-only), but SKILL.md recommends installing @membranehq/cli via npm (-g). This is a public npm package (expected for a CLI), but installing global packages affects the host environment — users should verify the package source/version before running npm install -g.
- Credentials
- okThe skill declares no required env vars or credentials and explicitly recommends letting Membrane manage credentials ("never ask the user for API keys or tokens"). That is proportionate to the stated purpose. Authentication is handled interactively via Membrane's login flow.
- Persistence & Privilege
- okalways:false and the skill is user-invocable. It does not request persistent elevated privileges or modify other skills' configurations. Agent autonomous invocation is allowed by default but is not a special grant of this skill alone.