Back to skill
Skillv1.0.3
ClawScan security
Lucca · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 22, 2026, 1:49 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requirements and runtime instructions match its stated purpose (using the Membrane CLI to operate on Lucca data); nothing requested is disproportionate or unexplained.
- Guidance
- This skill appears coherent and uses the Membrane CLI to access Lucca. Before installing: (1) verify you trust the @membranehq/cli package (check the npm/org page and GitHub repo and the vendor site https://getmembrane.com), (2) prefer using npx for one-off runs if you don't want a global package, (3) be aware the CLI will perform OAuth-style logins and can access Lucca data once a connection is created—only grant access you intend, and (4) in automated/headless environments you will need to complete the headless login flow (copy the code from the browser). If you need higher assurance, review the Membrane CLI source and npm package metadata before installing.
Review Dimensions
- Purpose & Capability
- okThe skill is an integration wrapper for Lucca and consistently instructs the agent to use the Membrane CLI to authenticate, connect, discover actions, and run them. The requested actions and tools (membrane CLI) are coherent with the described purpose.
- Instruction Scope
- okSKILL.md confines behavior to installing/using the Membrane CLI, logging in, creating/listing connections and actions, and running action endpoints. It does not instruct reading unrelated system files, environment variables, or sending data to unexpected endpoints.
- Install Mechanism
- noteInstallation is instruction-only and tells users to install @membranehq/cli from the public npm registry (npm install -g). That is a common, reasonable choice for a CLI but carries the usual npm-global considerations (trusting the package and updates). There is no packaged download from an untrusted host.
- Credentials
- okThe skill declares no required environment variables or credentials; it relies on Membrane to manage authentication and instructs users to complete interactive login flows. This is proportionate to the task of integrating with Lucca.
- Persistence & Privilege
- okThe skill is not always-enabled and does not request elevated platform privileges. It only guides CLI usage and relies on Membrane for credential handling; there is no instruction to modify other skills or system-wide settings.