ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Mindspun

v1.0.2

Mindspun integration. Manage data, records, and automate workflows. Use when the user wants to interact with Mindspun data.

0· 96·0 current·0 all-time
byVlad Ursul@gora050
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The SKILL.md describes a Mindspun integration via the Membrane CLI and the actions described (connectors, action run, proxy requests) are coherent with that purpose. However, the registry metadata declares no required binaries while the runtime instructions explicitly require the `membrane` CLI (installed via npm). The missing declaration is an inconsistency.
Instruction Scope
Instructions remain within the stated domain (discover actions, run actions, proxy API calls). They do not ask to read unrelated local files or environment variables. That said, the `membrane request` and `action run` flows allow sending arbitrary proxied requests to external APIs (and returning their responses), which expands what an agent can do beyond simple CRUD on known objects—this is expected for an integration but increases blast radius if misused.
!
Install Mechanism
The skill is instruction-only (no install spec), yet the SKILL.md tells users to install a global npm package (`npm install -g @membranehq/cli`). Installing a global CLI from a package registry is a moderate-risk action and should be declared in metadata. Because the skill asks the operator to install and run third‑party code but doesn't declare that requirement, this is a coherence and supply-chain concern.
Credentials
No environment variables, credentials, or config paths are requested by the skill. Auth is delegated to Membrane (browser login flow). The required network access and Membrane account are proportional to the stated functionality.
Persistence & Privilege
The skill does not request persistent always-on presence, does not modify other skill configs, and does not claim elevated platform privileges. Autonomous invocation is allowed (platform default) but not combined with other privilege escalations.
What to consider before installing
This skill appears to do what it says (use Membrane to talk to Mindspun), but note these points before installing or using it: - The SKILL.md requires installing and running the @membranehq/cli package (global npm install) but the registry metadata doesn't declare any required binaries—confirm you trust the npm package and its publisher (check https://github.com/membranedev/application-skills and the @membranehq/cli repo). - Installing a global CLI runs third-party code on your system; prefer to audit the package or run it in an isolated environment (container, VM) if you have doubts. - The Membrane CLI can proxy arbitrary API requests and run actions—only grant the agent ability to use this skill when you trust its behavior and the connection it will create. - If you need more assurance, ask the publisher for a declared install spec or required-binaries entry and for provenance (package repository, release tags).

Like a lobster shell, security has layers — review code before you run it.

latestvk972fgbarhprzsryf5jybfgtjd843fkq

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments