Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Mindsdb
v1.0.0MindsDB integration. Manage data, records, and automate workflows. Use when the user wants to interact with MindsDB data.
⭐ 0· 40·0 current·0 all-time
byVlad Ursul@gora050
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The skill claims a MindsDB integration but relies entirely on the Membrane CLI as a proxy. Registry metadata declares no required binaries or environment variables, yet the SKILL.md explicitly instructs installing and using the '@membranehq/cli' (npm). The dependency on an external CLI is coherent with the stated purpose but is not reflected in the declared requirements — this inconsistency is concerning.
Instruction Scope
SKILL.md stays within the stated purpose: it instructs discovery of connectors/actions, running actions, and proxying requests to MindsDB via Membrane. It instructs browser-based login flows (including headless token-complete steps) and running arbitrary proxied requests (membrane request CONNECTION_ID /path). That gives the operator ability to call arbitrary MindsDB endpoints through Membrane — expected for this integration but powerful, so the user should be aware of what data will be sent through those requests.
Install Mechanism
There is no formal install spec in the registry, but SKILL.md asks users to run 'npm install -g @membranehq/cli' and uses 'npx @membranehq/cli@latest' in examples. Directing global npm installs or npx pulls arbitrary code from the public registry; the registry metadata should have declared this dependency. This mismatch increases risk because installation would pull third-party code not captured by the skill manifest.
Credentials
The skill does not request environment variables or credentials in the manifest and advises not to ask users for API keys, relying on Membrane for auth. Requiring a Membrane account (and network access) is proportional to the described functionality. However, because the skill uses Membrane's proxy, it will cause authenticated requests on behalf of the user — ensure you trust the Membrane service and the connection you create.
Persistence & Privilege
The skill is not always-enabled and is user-invocable; it does not request persistent elevated privileges in the manifest. There are no instructions to modify other skills or system-wide agent settings. Normal autonomous invocation is allowed by platform defaults and is not in itself a concern here.
What to consider before installing
Things to consider before installing: (1) The SKILL.md requires installing the Membrane CLI via npm (global install or npx), but the skill manifest did not declare that requirement — confirm you are comfortable installing a third‑party npm package. (2) The skill uses browser-based login and Membrane-managed auth; be prepared to authenticate a Membrane account and understand which MindsDB connections you create. (3) Membrane's proxy can call arbitrary MindsDB endpoints with your credential; avoid sending sensitive data unless you trust Membrane and the connection. (4) If you want to proceed, verify the CLI source (https://getmembrane.com and the linked GitHub repo), consider installing the CLI in an isolated environment (container or VM) rather than globally, and test commands manually before granting the skill automated access. If you need higher assurance, ask the publisher to add an explicit install spec and declared binary requirement in the skill manifest so the platform can verify dependencies automatically.Like a lobster shell, security has layers — review code before you run it.
latestvk97877ntwy511y87k2b08y371184hxb2
License
MIT-0
Free to use, modify, and redistribute. No attribution required.