Skillv1.0.0

ClawScan security

Smooch · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignApr 8, 2026, 10:17 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's instructions, requirements, and actions align with its stated purpose (using the Membrane CLI to integrate with Smooch); no unexplained credentials, files, or privileged behaviors are requested, though it relies on a third‑party service (Membrane) and a global npm install which the user must trust.
Guidance: This skill appears coherent: it tells you to install and use the Membrane CLI to connect to Smooch and does not request local secrets. Before installing, consider: (1) you must trust the Membrane service (getmembrane.com) because it will proxy Smooch requests and manage auth tokens and data; review its privacy/security docs and terms; (2) the CLI is installed globally via npm—review the package (@membranehq/cli) and its maintainers; (3) use a dedicated/test Membrane/Smooch account if you want to limit exposure; (4) if you cannot or will not trust a third party holding message data or tokens, do not use this integration.

Review Dimensions

Purpose & Capability: okName/description claim Smooch integration and the SKILL.md exclusively instructs using the Membrane CLI and Membrane-hosted connectors to access Smooch. Required resources (network access and a Membrane account) match the stated purpose.
Instruction Scope: noteInstructions are scoped to installing and using the Membrane CLI, creating connections, listing actions, running actions, and proxying requests through Membrane. They do not instruct reading unrelated files or environment variables. Note: proxying sends requests through Membrane, so Smooch request/response data and auth tokens are handled by Membrane's service.
Install Mechanism: noteThe skill is instruction-only (no install spec), but the instructions require installing @membranehq/cli via npm globally (npm install -g). Using an npm package is expected for CLI usage but is a moderate-risk install mechanism (downloads code from the npm registry). The registry metadata does not declare this install step explicitly.
Credentials: okThe skill does not request environment variables or local credentials. It explicitly advises against asking users for API keys and relies on Membrane to manage auth, which is proportionate. Users should be aware that Membrane will receive/hold auth tokens and Smooch data.
Persistence & Privilege: okNo elevated privileges requested. always:false and the skill is user-invocable; it does not ask to persist system-wide configuration or modify other skills. Normal autonomous invocation remains allowed per platform defaults.