Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Instana
v1.0.0Instana integration. Manage data, records, and automate workflows. Use when the user wants to interact with Instana data.
⭐ 0· 46·0 current·0 all-time
byMembrane Dev@membranedev
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The name/description say 'Instana integration', which is plausible. However the SKILL.md indicates the skill uses the Membrane CLI/service (homepage getmembrane.com) as a proxy to interact with Instana rather than calling Instana APIs directly. Using a proxy service can be legitimate, but the skill metadata does not explain or justify routing Instana data through Membrane, and the homepage does not match the vendor of the claimed integration (Instana/IBM).
Instruction Scope
The instructions (excerpt) say 'This skill uses the Membrane CLI to interact with Instana' and require network access and a Membrane account. That implies the agent will send Instana-related data to Membrane's service. The SKILL.md as provided is truncated so I cannot confirm all actions, but there is an unresolved scope issue: the skill will rely on an external third party for authentication and API calls, potentially transmitting sensitive monitoring data outside the user's Instana account. The skill metadata does not declare or warn about that data flow.
Install Mechanism
There is no install spec and no required binaries listed in the registry metadata, yet the SKILL.md explicitly requires the Membrane CLI at runtime. This is an inconsistency: either the skill expects the runtime to already have Membrane installed, or the SKILL.md omitted an install step. Missing install declaration is risky because the agent may fail or attempt to obtain the binary by other means; the lack of an install spec also means no review of what would be installed/executed.
Credentials
The metadata declares no required environment variables or primary credential, but the SKILL.md states it 'Requires a valid Membrane account' and handles authentication via Membrane. If a Membrane API key or token is needed, it is not declared. That mismatch (no credentials declared vs. requiring an external account) is disproportionate and hides where credentials must be provided/stored. Additionally, routing Instana data through a third party increases the sensitivity of any credentials or data the skill will access or transmit.
Persistence & Privilege
The skill is not configured as always:true and is user-invocable only; it does not request persistent system-wide privileges in the provided metadata. There is no indication it modifies other skills or global agent configs. This aspect appears proportionate.
What to consider before installing
Before installing: (1) Review the full SKILL.md (the provided excerpt is truncated) to confirm what exact commands and network endpoints the skill will call. (2) Ask the publisher whether Instana data is sent to Membrane (getmembrane.com) and why a third‑party proxy is used instead of calling Instana APIs directly. (3) Confirm what credentials are required (Membrane account token, Instana API key) and where/how they will be stored; do not supply secrets until you understand this. (4) Expect that the Membrane CLI must be present; verify how it is installed and review that installer. (5) If you cannot accept routing monitoring data through a third party, do not install. If you proceed, test with non-sensitive data and least privilege credentials.Like a lobster shell, security has layers — review code before you run it.
latestvk979ybyg28y125715k7ydvfxfn845d4m
License
MIT-0
Free to use, modify, and redistribute. No attribution required.