Back to skill
Skillv1.0.2
ClawScan security
Keap · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 2, 2026, 8:39 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is internally consistent: it delegates Keap access to the Membrane CLI/service and its instructions match the stated Keap integration purpose, with only minor metadata omissions to note.
- Guidance
- This skill delegates Keap access to the Membrane service and CLI. Before installing/using it: (1) Verify you trust the @membranehq/cli package and the Membrane service (review their homepage/repo and privacy/security docs). (2) Be aware that Keap data and auth are handled server-side by Membrane — data you request will transit through their service. (3) The SKILL.md assumes you can install/run npm or npx; if you prefer not to install globally, use npx. (4) The registry metadata omitted a required CLI binary entry — that’s a minor bookkeeping issue but not a functional red flag.
Review Dimensions
- Purpose & Capability
- okThe name/description say 'Keap integration' and the SKILL.md exclusively documents using the Membrane CLI to connect to Keap, list actions, run actions, or proxy API requests — this is coherent with the stated purpose.
- Instruction Scope
- noteInstructions tell the agent to install and run the Membrane CLI, perform interactive login (browser flow / headless code) and use membrane request to proxy arbitrary Keap API calls. This is expected for a connector skill, but be aware that API requests go through Membrane (i.e., request/response data and Keap auth are handled by Membrane).
- Install Mechanism
- noteInstall is instruction-only and recommends npm install -g @membranehq/cli or using npx. Using npm is a standard public-registry install (moderate risk); the skill does not include a packaged installer nor download arbitrary URLs. Metadata did not list 'membrane' or 'npm' as required binaries even though the runtime instructions assume the CLI is available — a minor metadata inconsistency.
- Credentials
- okThe skill does not request environment variables or other credentials and explicitly instructs not to ask users for API keys. It requires a Membrane account (interactive login) so Keap credentials are managed by Membrane rather than being requested by the skill itself — this is proportionate to the described functionality.
- Persistence & Privilege
- okThe skill is instruction-only, does not declare always:true, and does not request system-wide config modifications. It requires interactive login to an external service but does not request elevated agent privileges.