Cloudfiles
ReviewAudited by ClawScan on May 10, 2026.
Overview
This is a plausible CloudFiles integration, but it gives the agent broad authenticated API authority, including write/delete proxy requests, without clear guardrails.
Before installing, confirm that cloudfiles.io is the service you intend to use, install the Membrane CLI from a trusted source, and connect only the correct CloudFiles account. Require explicit confirmation before allowing the agent to run raw proxy requests or any action that creates, modifies, shares, or deletes files or records.
Findings (5)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent could modify or delete CloudFiles data through Membrane if it chooses an unsafe API request.
The skill documents a raw authenticated API proxy with destructive methods and user/agent-supplied paths, but does not include explicit approval or scoping guidance for high-impact operations.
membrane request CONNECTION_ID /path/to/endpoint ... injects the correct authentication headers ... HTTP method (GET, POST, PUT, PATCH, DELETE)
Prefer listed Membrane actions, require explicit user confirmation for POST/PUT/PATCH/DELETE requests, and restrict proxy use to specific paths and methods needed for the task.
Installing and using the skill may give Membrane-backed tooling ongoing access to the connected CloudFiles account.
The integration requires delegated CloudFiles/Membrane authentication and automatic refresh, which is expected but sensitive.
Membrane handles authentication and credentials refresh automatically ... user needs to authenticate (OAuth, API key, etc.)
Connect only the intended account, review requested scopes during authentication, and revoke the connection when it is no longer needed.
The code actually executed may change over time as the npm package updates.
The skill relies on a globally installed npm CLI pinned to the moving @latest tag, outside the registry install spec.
npm install -g @membranehq/cli@latest
Install from a trusted source and consider pinning a known Membrane CLI version in controlled environments.
Remote instructions could steer the agent during setup or connection handling.
The skill tells the agent that connection responses may contain instructions for the agent, so provider-returned text could influence behavior if not bounded by the user's request.
clientAction.agentInstructions (optional) — instructions for the AI agent on how to proceed programmatically.
Treat returned instructions as untrusted operational hints and follow them only when they match the user's request and the expected CloudFiles setup flow.
A user or agent could be confused about which CloudFiles service, API, or account is being connected.
The service description points to a sales/marketing CloudFiles product, while the documented official docs link points to Rackspace Cloud Files, which appears to be a different service.
CloudFiles is a sales and marketing platform ... Official docs: https://www.rackspace.com/cloud/cloud-files
Verify the intended CloudFiles provider and documentation before authenticating or running account-changing actions.