Back to skill
Skillv1.0.0
ClawScan security
Q2 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 5, 2026, 12:05 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's instructions, dependencies, and required actions are coherent with a Q2 integration that uses the Membrane CLI; nothing requested is disproportionate or unrelated to the stated purpose.
- Guidance
- This skill delegates Q2 access to the Membrane CLI/proxy. Before installing or using it: (1) confirm you trust Membrane (getmembrane.com) because API calls and tokens will transit their CLI/proxy; (2) prefer using 'npx @membranehq/cli@latest' or inspect the @membranehq/cli package on npm/GitHub instead of a global npm install; (3) review the OAuth consent and the scopes requested when you run 'membrane connect' so you only grant needed permissions; (4) avoid pasting secrets into chat prompts—use the CLI/browser OAuth flow as instructed; (5) if you need stricter data residency, verify Membrane's privacy/security posture before proxying production data.
Review Dimensions
- Purpose & Capability
- okName/description (Q2 integration) align with the instructions: all runtime steps use the Membrane CLI to discover connectors, create connections, run actions, or proxy requests to Q2. No unrelated credentials, binaries, or config paths are requested.
- Instruction Scope
- okSKILL.md instructs the agent to install and run the Membrane CLI, authenticate via browser, list/search connectors and actions, run actions, and optionally proxy raw API requests through Membrane. These steps are within scope for a Q2 integration and do not ask the agent to read unrelated system files or unrelated env vars.
- Install Mechanism
- noteThere is no formal install spec in the registry (instruction-only). The document recommends 'npm install -g @membranehq/cli' and also shows npx usage. Installing a third-party CLI via npm is a normal approach but carries the usual risk of installing code globally; using npx or reviewing the package on npm/GitHub mitigates that risk.
- Credentials
- okThe skill declares no required environment variables, credentials, or config paths. It relies on Membrane to handle authentication (OAuth/browser flow). This is proportional for a connector that delegates auth to a third-party CLI/proxy. The user should note that authentication is handled by Membrane, which will see proxied requests and tokens.
- Persistence & Privilege
- okSkill is instruction-only, has no install-time hooks, and does not request 'always: true' or other elevated persistence. It does not modify other skills or system-wide settings according to the provided content.