Skillv1.0.3

ClawScan security

Webinarkit · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignApr 22, 2026, 9:11 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill is internally consistent: it is an instruction-only integration that relies on the Membrane CLI to access WebinarKit and does not request unrelated credentials or unusual system access.
Guidance: This skill appears coherent with its stated purpose. Before installing/using it: 1) Confirm you trust the Membrane service (getmembrane.com) and the npm package @membranehq/cli — review the npm package page and repository if possible. 2) Prefer running single commands with npx when possible to avoid a global npm install. 3) Be aware the CLI will open a browser or produce an auth code — you will authenticate to Membrane, which will then hold connection credentials for WebinarKit. 4) If you handle sensitive webinar/customer data, verify Membrane's privacy/security policies and understand what data is sent to their servers. 5) If you want extra caution, inspect the @membranehq/cli source in its GitHub repository before installing.

Review Dimensions

Purpose & Capability: okName/description (WebinarKit integration) match the instructions: the SKILL.md exclusively instructs using the Membrane CLI to connect to WebinarKit, discover and run actions, and manage records. There are no unrelated env vars, binaries, or paths requested.
Instruction Scope: okRuntime instructions are focused on installing and using the Membrane CLI (login, connect, action list/create/run). They do not instruct reading local secrets, scanning unrelated files, or sending data to unexpected endpoints. Authentication is handled via Membrane's login flow (browser or code exchange) which is consistent with the stated design.
Install Mechanism: noteThe SKILL.md recommends installing @membranehq/cli via npm (npm install -g). This is expected for a CLI-driven integration but carries the usual npm-global risks (third-party package execution, writes to disk). A lower-friction alternative (npx) is shown in one example. Because there is no registry install spec, the install happens only if the user follows the instructions.
Credentials: okThe skill does not request environment variables, credentials, or config paths. It delegates auth to Membrane, which is consistent with its guidance to avoid asking users for API keys or tokens.
Persistence & Privilege: okThe skill is instruction-only, always:false, and does not request persistent system-wide privileges or modify other skills. Autonomous invocation is allowed by platform default but is not combined with other red flags.