Back to skill
Skillv1.0.3
ClawScan security
Smartsheet · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 21, 2026, 2:04 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is an instruction-only Smartsheet integration that delegates auth and API work to the Membrane CLI/service; its requirements and instructions are coherent with its stated purpose.
- Guidance
- This skill is an instruction-only integration that relies on the third-party Membrane service/CLI to access Smartsheet. Before installing or using it: (1) verify the @membranehq/cli package and the project's repository on npm/GitHub to ensure you trust the publisher; (2) be aware that Membrane will handle your Smartsheet credentials and therefore will be able to access your Smartsheet data—review Membrane's privacy/security documentation and revoke connections when no longer needed; (3) prefer running the CLI in a controlled environment (or inspect the package) if you need stronger assurance, since npm -g will install code system-wide; (4) there are no hidden env var requests or file reads in the skill instructions, but always confirm any auth URLs/codes come from the expected flow and not from a separate unsolicited message. Overall the skill's pieces are coherent with its stated purpose.
Review Dimensions
- Purpose & Capability
- okThe name and description describe a Smartsheet integration and the SKILL.md consistently instructs the agent to use the Membrane CLI to connect to Smartsheet and run actions. There are no unrelated credentials, binaries, or paths requested.
- Instruction Scope
- okRuntime instructions are limited to installing and using the Membrane CLI (login, create connection, list/create/run actions). They do not ask the agent to read arbitrary local files, harvest environment variables, or transmit data to unexpected endpoints. The flow requires interactive login or following an authorization URL (expected for OAuth-style connectors).
- Install Mechanism
- noteThere is no registry install spec; the SKILL.md tells users to run an npm global install (npm install -g @membranehq/cli@latest). That is a common way to install CLIs but is higher-risk than an instruction-only flow that requires no installs because it writes code to disk and modifies the environment. This is expected for a CLI-based integration but users should verify the package/source (npm/GitHub) before installing.
- Credentials
- okThe skill requests no environment variables or local config paths. It explicitly recommends letting Membrane handle Smartsheet credentials rather than asking the user for API keys. No disproportionate credential access is requested by the skill itself.
- Persistence & Privilege
- okThe skill is not marked always:true and does not request persistent system-wide configuration beyond installing an optional external CLI. Autonomous invocation remains possible (platform default) but is not combined with any other elevated privileges here.