Skillv1.0.3

ClawScan security

Drift · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignApr 21, 2026, 11:02 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's requests and runtime instructions align with a Drift integration that uses the Membrane CLI; nothing requested appears disproportionate or unrelated to its stated purpose.
Guidance: This skill appears coherent for integrating with Drift via Membrane. Before installing/using it: (1) understand that you'll need a Membrane account and that Drift credentials are managed server-side by Membrane—review their privacy/trust posture; (2) installing the Membrane CLI requires running `npm install -g`, so verify the package/version and only run it from a trusted environment; (3) review and consent before running any actions that modify Drift data (create/delete/update); (4) do not paste Drift API keys or other secrets into chat—use the Membrane login flow as intended; (5) if you are uncomfortable with an agent invoking skills autonomously, restrict the agent or require explicit user approval before running actions.

Purpose & Capability: okName/description (Drift integration) match the instructions: the skill tells the agent to use Membrane to connect to Drift, discover and run Drift-related actions. No unrelated credentials, binaries, or paths are requested.
Instruction Scope: okSKILL.md confines behavior to installing/using the Membrane CLI, logging in, creating a Drift connection, listing/discovering actions, and running actions. It does not instruct reading unrelated files or exfiltrating secrets; it explicitly advises against asking users for API keys.
Install Mechanism: noteThe skill is instruction-only (no install spec) which is low-risk, but it instructs users to run `npm install -g @membranehq/cli@latest`. Installing a global npm package is a normal step for CLI tooling but carries the usual supply-chain and privilege considerations (verify package origin/version) since it writes to the system environment.
Credentials: noteThe skill declares no required env vars or credentials. However it relies on a third-party Membrane account to host credentials and perform Drift authentication; users should be aware that Drift access and data will flow through Membrane's service (server-side).
Persistence & Privilege: okThe skill does not request always:true, has no install-time agents or files, and does not modify other skills or system-wide settings. Autonomous invocation is allowed by default (platform normal) but is not combined with broad or unexplained privileges here.