ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Piano

v1.0.2

Piano integration. Manage data, records, and automate workflows. Use when the user wants to interact with Piano data.

0· 86·0 current·0 all-time
byVlad Ursul@gora050
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Pending
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
The skill claims to be a 'Piano integration' to manage data via Membrane, and most of SKILL.md describes how to use the Membrane CLI to connect and proxy requests to Piano (coherent). However, the top-level prose describes a virtual musical piano and links to Apple MusicKit documentation, which is unrelated to the rest of the content. This documentation mismatch is inconsistent and could indicate sloppy packaging or mislabeling.
Instruction Scope
The instructions are concrete and focused: install the Membrane CLI, run browser-based login, create a connection, list and run actions, or proxy raw requests. They do not ask the agent to read unrelated files or environment variables. However, following the instructions requires running CLI commands that can send arbitrary proxied requests to the integrated service, so an agent executing them should be trusted to act only as intended.
Install Mechanism
There is no formal install spec in the skill (lowest static risk). The README instructs users to install @membranehq/cli via npm -g (or use npx). Installing or running third-party CLIs has typical supply-chain risks (malicious npm packages, or accidental privilege escalation from global installs).
Credentials
The skill declares no required env vars, no credentials, and relies on Membrane's browser-based login/connection flow. This is proportionate for a CLI-based integration that delegates auth to Membrane.
Persistence & Privilege
The skill does not request always:true or any special platform persistence, and does not ask to modify other skills or system-wide settings. Autonomous invocation is allowed by default on the platform, but is not combined here with other high-risk requests.
What to consider before installing
This skill appears to be an instruction-only guide for using the Membrane CLI to interact with a 'Piano' integration, which is reasonable. However: (1) the opening paragraph about a virtual musical piano and the Apple MusicKit link is inconsistent with the rest of the doc — ask the publisher which 'Piano' service this targets before trusting it. (2) The instructions tell you to install and run @membranehq/cli (npm -g or npx). Only install CLIs from sources you trust and be aware global npm installs can affect your system. (3) The Membrane CLI proxies requests and injects auth; if you allow an agent to execute these CLI commands autonomously, it can make arbitrary API calls on your behalf to the connected service — ensure you trust the agent and the connection. (4) If you need higher assurance, verify the skill's repository and publisher identity (the skill lists a GitHub repo and getmembrane.com homepage) and ask the maintainer to fix the misleading introduction before installation.

Like a lobster shell, security has layers — review code before you run it.

latestvk97bp1hbe3tn3r8bzb3dja7f29843j95

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments