ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Plain

v1.0.2

Plain integration. Manage Persons, Organizations, Deals, Leads, Activities, Notes and more. Use when the user wants to interact with Plain data.

0· 121·1 current·1 all-time
byVlad Ursul@gora050
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
The top-level description ("Manage Persons, Organizations, Deals, Leads, Activities, Notes") reads like a CRM connector, but the SKILL.md describes Plain as a collaborative document editor (plain.com). This mismatch suggests the skill may be mislabeled or its purpose was copied from another skill; it's unclear which API/resource model the connector actually targets.
Instruction Scope
Instructions are explicit and limited to installing the Membrane CLI, authenticating via membrane login, creating a connection, listing actions, running actions, and proxying requests through Membrane. The instructions do not ask the agent to read unrelated files or environment variables. The scope is appropriate for an integration that delegates auth to Membrane.
Install Mechanism
This is an instruction-only skill (no install spec). It suggests installing @membranehq/cli via 'npm install -g', which is a standard but privileged operation (global install). No obscure download URLs or archives are recommended by the skill itself.
Credentials
The skill declares no required environment variables or local secrets and explicitly instructs to let Membrane manage credentials. Requiring a Membrane account is proportionate to the described workflow.
Persistence & Privilege
The skill is not marked always:true and does not request elevated platform presence or modifications to other skills. Autonomous invocation is allowed (default) but not by itself a red flag here.
What to consider before installing
Before installing or invoking this skill: 1) Verify which "Plain" product the connector targets — the description and the SKILL.md disagree (CRM-style resources vs a document editor). This may be a copy/paste error or indicate the connector points at a different service. 2) If you plan to use it, sign in with a Membrane account as instructed and inspect the available actions with 'membrane action list --connectionId=CONNECTION_ID --json' to confirm which resources/fields the connector exposes. 3) Be aware the skill recommends globally installing the Membrane CLI ('npm install -g'), which requires local privileges — only do this if you trust @membranehq on npm. 4) Confirm privacy and data handling expectations with Membrane (where credentials and proxied API calls are processed) before granting access to production data. 5) If you are unsure which Plain API is intended, ask the skill author or maintainer for clarification (repository/homepage are listed in the SKILL.md).

Like a lobster shell, security has layers — review code before you run it.

latestvk975e4svxv9t9ng5acca1eeew5843mdh

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments