Back to skill
Skillv1.0.3
ClawScan security
Supersaas · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 22, 2026, 1:01 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requests and runtime instructions are consistent with a SuperSaaS integration that proxies actions through the Membrane CLI; nothing requested is disproportionate to that purpose.
- Guidance
- This skill delegates auth and API calls to the Membrane platform/CLI. Before installing or using it: (1) Verify you trust Membrane (review their docs and CLI source or package page) because your SuperSaaS credentials will be managed through it; (2) Perform the login interactively (do not paste auth codes into untrusted places); (3) Installing the CLI globally with npm writes to your system—review the npm package and consider installing in a controlled environment if you prefer; (4) Check SuperSaaS permissions and scopes granted via the connector so the account only gets the access it needs; (5) Note the skill can be invoked by the agent (normal), so be careful about granting broad agent permissions or automating writes (creates/updates/deletes) without confirmation.
Review Dimensions
- Purpose & Capability
- okName/description match the instructions: the skill uses Membrane as a broker to manage SuperSaaS resources. Required capabilities (network access, Membrane account, installing the Membrane CLI) are coherent with the stated purpose.
- Instruction Scope
- okSKILL.md instructs installing the Membrane CLI, performing an interactive login, creating a connector and listing/running actions. It does not instruct accessing unrelated files, arbitrary env vars, or exfiltrating data to unexpected endpoints beyond Membrane/SuperSaaS.
- Install Mechanism
- okThis is instruction-only; the only install step is a suggested npm install -g of @membranehq/cli. That is a standard package manager install and is expected for a CLI-based integration. No archive downloads or opaque URLs are used.
- Credentials
- okThe skill declares no required env vars or credentials and relies on Membrane for auth. This is proportionate, though it centralizes SuperSaaS credentials behind the Membrane account—expected for this architecture.
- Persistence & Privilege
- okalways is false and the skill does not request elevated platform permanence or cross-skill configuration changes. disable-model-invocation is default (false), which is normal and not flagged on its own.