Back to skill
Skillv1.0.4
ClawScan security
Vtiger · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 21, 2026, 12:05 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is an instruction-only Vtiger integration that consistently delegates auth and API access to the Membrane CLI; its requirements and instructions align with the stated purpose.
- Guidance
- This skill is coherent and uses the Membrane CLI to handle auth and Vtiger API calls. Before installing or using it: (1) confirm you trust the Membrane project and the npm package @membranehq/cli (review the package page, maintainers, and recent releases); (2) avoid installing global npm packages on shared or production hosts—use a dedicated environment or container if possible; (3) review where the Membrane CLI stores tokens/credentials and your organization’s policy on delegating CRM access to third-party services (Membrane will broker access to Vtiger); and (4) if you need to restrict automated agent behavior, remember this skill can be invoked autonomously by agents by default—adjust agent permissions if needed.
Review Dimensions
- Purpose & Capability
- okThe name/description (Vtiger integration) match the instructions: all operations are performed via the Membrane CLI and focus on connecting to Vtiger, listing/creating/running actions, and managing records. No unrelated credentials, binaries, or paths are requested.
- Instruction Scope
- okSKILL.md stays on-topic: it documents installing the Membrane CLI, signing in, creating a connection to Vtiger, discovering and running actions, and best practices. It does not instruct the agent to read arbitrary files, exfiltrate environment variables, or call endpoints outside the Membrane/Vtiger flow.
- Install Mechanism
- noteThere is no registry install spec (skill is instruction-only). The README instructs users to run `npm install -g @membranehq/cli@latest` — a public npm global install. This is expected for a CLI but carries the usual considerations of installing global npm packages (downloads and runs third-party code); it’s moderate risk but proportionate to the stated purpose.
- Credentials
- okThe skill declares no required environment variables or credentials and explicitly instructs not to ask users for API keys, instead using Membrane-managed connections. The requested scope (a Membrane account and network access) is proportional to integrating with a hosted connector service.
- Persistence & Privilege
- okThe skill does not request always:true and has no install-time modifications described. Autonomous invocation is allowed by default (normal for skills). There is no indication it modifies other skills or system-wide configs.