Back to skill
Skillv1.0.3
ClawScan security
Google Classroom · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 21, 2026, 5:04 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- This skill is an instruction-only wrapper that routes Google Classroom operations through the Membrane CLI; its requirements and instructions are consistent with that purpose.
- Guidance
- This skill is coherent: it delegates Google Classroom access to the Membrane CLI rather than asking for raw API keys. Before installing, verify you trust Membrane (@membranehq) and the npm package (review the package page, maintainers, and recent versions). Be aware that installing a global npm CLI runs third-party code on your system and that granting OAuth access during `membrane connect` gives Membrane (a third party) permission to access your Google Classroom data — review OAuth scopes and consider using a limited Google account or test tenant if you want to limit exposure. If you need stronger assurance, ask the publisher for a reproducible install hash or use an environment where you can audit the installed CLI.
Review Dimensions
- Purpose & Capability
- okName and description match the runtime instructions: the SKILL.md tells the agent to use the Membrane CLI to manage Google Classroom resources. There are no unrelated credentials, binaries, or config paths requested.
- Instruction Scope
- okSKILL.md only instructs installing the Membrane CLI, logging in, creating a connector to Google Classroom, discovering/creating actions, and running those actions. It does not direct the agent to read unrelated files, exfiltrate data, or access unrelated environment variables.
- Install Mechanism
- noteInstallation is instruction-only and recommends `npm install -g @membranehq/cli@latest`. Using the public npm registry for a CLI is typical but has moderate supply-chain considerations (global npm installs run code on your machine). This is proportional to the described workflow but users should verify the package source and integrity.
- Credentials
- okThe skill declares no required env vars, no config paths, and no primary credential. Authentication is delegated to Membrane's OAuth flow, which is appropriate for a third-party integration with Google Classroom.
- Persistence & Privilege
- okThe skill does not request always:true and does not declare any automatic persistent system changes. It relies on the Membrane CLI and browser-based or headless OAuth flow for credentials management, which is expected for this integration.