ClawHub

Maxmind Minfraud

v1.0.2

MaxMind minFraud integration. Manage data, records, and automate workflows. Use when the user wants to interact with MaxMind minFraud data.

0· 83·0 current·0 all-time
byVlad Ursul@gora050
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Pending
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name/description (MaxMind minFraud integration) matches the instructions: using the Membrane CLI to create connections, list/run actions, and proxy requests to MinFraud. Required capabilities (network and a Membrane account) are coherent with that purpose.
Instruction Scope
SKILL.md only instructs installing and using the Membrane CLI, performing membrane login/connect/action/request flows, and discovering actions. It does not direct the agent to read unrelated files or environment variables, nor to send data to unexpected endpoints beyond Membrane/MaxMind.
Install Mechanism
The guide recommends a global npm install (npm install -g @membranehq/cli). Installing a public npm package is a typical dependency for a CLI-based skill but carries the usual moderate risk of third-party npm packages; no archive downloads or obscure URLs are used.
Credentials
The skill declares no required env vars or credentials. It delegates auth to Membrane (via membrane login/connection) which is proportional to the stated functionality. Users should be aware that Membrane will store/manage credentials for the connected services.
Persistence & Privilege
The skill is not forced always-on (always: false) and is user-invocable. It does not request elevated platform privileges or attempt to modify other skills or system-wide agent settings.
Assessment
This skill is coherent with its stated purpose: it uses the Membrane CLI to interact with MaxMind minFraud. Before installing: 1) Verify you trust the @membranehq/cli npm package and its publisher (npm global installs run with local system privileges). 2) Understand that membrane login will create/retain authentication state (Membrane will manage your MinFraud credentials server-side and may store local tokens). 3) Confirm your organization/privacy requirements for sending transaction data through Membrane. 4) If you prefer not to install a global npm package, run the CLI with npx or in an isolated environment. The skill itself does not request unrelated secrets or file access.

Like a lobster shell, security has layers — review code before you run it.

latestvk973k2910gc015x113w60z4gbn842y9p

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments