ClawHub

Tacklit

v1.0.0

Tacklit integration. Manage data, records, and automate workflows. Use when the user wants to interact with Tacklit data.

0· 32·0 current·0 all-time
byVlad Ursul@gora050
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name/description say this is a Tacklit integration and all runtime instructions focus on using the Membrane CLI to discover and run Tacklit actions or proxy requests. No unrelated credentials, binaries, or config paths are requested.
Instruction Scope
SKILL.md limits actions to installing/using the Membrane CLI, logging in, creating a connection, listing/running actions, and proxying API requests via Membrane. It does not instruct reading unrelated files, accessing system credentials, or sending data to unexpected endpoints.
Install Mechanism
The skill is instruction-only (no install spec). It recommends installing @membranehq/cli via npm -g or using npx. This is expected for a CLI-based integration, but users should verify the package publisher before globally installing npm packages and can prefer npx to avoid altering system state.
Credentials
No environment variables, config paths, or credentials are requested in the skill. Authentication is delegated to the Membrane CLI/browser flow, which is appropriate for this integration.
Persistence & Privilege
The skill does not request always:true and makes no claims about modifying other skills or system-wide settings. Autonomous invocation is allowed (platform default) and is not combined with any high-risk privileges here.
Assessment
This skill is instruction-only and relies on the Membrane CLI to access Tacklit. Before installing or running commands: 1) confirm you trust @membranehq/cli and its publisher (review the npm package and the GitHub repo linked in the docs); 2) prefer using npx for one-off runs to avoid a global npm install; 3) when you run membrane login/connect you will be granting Membrane access to your Tacklit account—ensure you are comfortable with that delegation; 4) avoid pasting authentication codes from untrusted sources and verify the browser auth flow URL is a legitimate Membrane/Tacklit endpoint. Overall the skill is coherent, but validate the CLI source before installing.

Like a lobster shell, security has layers — review code before you run it.

latestvk97ffw2vq8jatpq0p42htqcksd84641b

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments