Voodoo Sms
v1.0.0Voodoo SMS integration. Manage data, records, and automate workflows. Use when the user wants to interact with Voodoo SMS data.
⭐ 0· 47·0 current·0 all-time
byVlad Ursul@gora050
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name/description ask to integrate with Voodoo SMS and the SKILL.md exclusively instructs use of the Membrane CLI and Membrane's connector/proxy. Required capabilities (network, Membrane account) match the stated purpose.
Instruction Scope
Runtime instructions are limited to installing/using the Membrane CLI, creating connections, listing actions, running actions, and proxying requests to the Voodoo SMS API. The instructions do not direct the agent to read unrelated files or environment variables or to exfiltrate data to unexpected endpoints.
Install Mechanism
There is no automatic install spec in the skill bundle (instruction-only). The doc recommends a global npm install of @membranehq/cli, which is a reasonable and expected mechanism for this integration — it is user-initiated and traceable via the npm registry.
Credentials
The skill declares no required environment variables or credentials and explicitly recommends letting Membrane handle auth rather than asking for API keys. The lack of extra credential requests is proportionate to the described functionality.
Persistence & Privilege
The skill does not request always:true, has no install-time persistence, and does not modify other skills or system-wide settings. It relies on Membrane-managed connections which are created through the user's Membrane account.
Assessment
This skill is instruction-only and asks you to use the Membrane CLI to manage Voodoo SMS connections. Before installing or using it: (1) confirm you trust the Membrane service (it will proxy API calls and hold connection credentials); (2) be aware that installing @membranehq/cli globally will modify your system npm packages — review the package source if you have concerns; (3) when authenticating, prefer least-privilege accounts for integrations and review granted scopes; (4) because this bundle contains no code, there was nothing for the scanner to analyze — if you need stronger assurance, inspect the Membrane CLI code or the connector implementation on the provider side.Like a lobster shell, security has layers — review code before you run it.
latestvk9775twjfq53xazqvebvz91kg984e7wv
License
MIT-0
Free to use, modify, and redistribute. No attribution required.