ClawHub

Megaventory

v1.0.2

Megaventory integration. Manage data, records, and automate workflows. Use when the user wants to interact with Megaventory data.

0· 112·0 current·0 all-time
byVlad Ursul@gora050
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The skill is described as a Megaventory integration and its runtime instructions use the Membrane CLI and Megaventory API proxying, which matches the stated purpose. No unrelated credentials, binaries, or config paths are requested.
Instruction Scope
SKILL.md directs installing and using the Membrane CLI (login, create connection, list/run actions, proxy requests). It does not ask the agent to read unrelated files, access unrelated environment variables, or transmit data to endpoints other than Membrane/Megaventory. Headless auth flows are described explicitly.
Install Mechanism
This is an instruction-only skill (no install spec in the registry), but it tells users to install an npm package globally (npm install -g @membranehq/cli). Installing an npm CLI is a reasonable requirement for this integration, but global npm packages execute code on the host — verify the package and source before installing.
Credentials
No environment variables, local secrets, or config paths are required. SKILL.md explicitly advises against asking users for API keys and describes Membrane as handling auth server-side, which is proportionate.
Persistence & Privilege
The skill does not request always:true, does not modify other skills or system-wide settings, and is user-invocable. It does not request elevated or persistent privileges beyond normal CLI usage.
Assessment
This skill appears coherent: it relies on the Membrane CLI to talk to Megaventory. Before installing: verify you trust the @membranehq npm package (global npm packages run code on your machine), confirm you are comfortable using Membrane as the auth proxy for Megaventory, and follow the described browser-based login flow carefully (especially in headless environments where you copy codes). If you prefer not to install global npm packages, consider using npx as shown in the doc or running the CLI in an isolated environment.

Like a lobster shell, security has layers — review code before you run it.

latestvk970cza4adv1ff5fbyy5ntaa5d842qqq

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments