Freshsales
ReviewAudited by ClawScan on May 10, 2026.
Overview
This Freshsales skill is purpose-aligned, but it describes broad authority over business, workflow, and payment-related CRM data without clear limits or approval safeguards.
Install only if you trust the Membrane/Freshsales integration and are prepared to grant CRM account access. Use least-privilege credentials, check OAuth scopes, and require manual confirmation for any write, bulk, workflow, purchase, invoice, or payment-related action.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If connected with broad permissions, mistakes or autonomous actions could alter customer records, deals, workflows, invoices, payment-related records, or other business data.
The skill describes broad management of CRM records and includes high-impact financial, bulk, and workflow-related objects, but the provided artifacts do not show clear confirmation, scoping, or rollback guidance for mutations.
"Manage crm and sales data, records, and workflows" ... "Bulk Action" ... "Invoice" ... "Payment" ... "Workflow"
Use a least-privilege Freshsales account, require explicit user approval before writes, bulk actions, workflow changes, purchases, or payment-related changes, and test in a sandbox where possible.
Users may authorize a CRM-connected account without a clear artifact-level statement of what credentials, scopes, or account permissions are required.
The registry requirements under-declare credentials, while capability signals indicate OAuth or sensitive account authorization is needed for the integration.
"Primary credential: none"; "Required env vars: none"; capability signals include "requires-oauth-token" and "requires-sensitive-credentials"
Before installing, confirm the exact OAuth scopes and account permissions requested, prefer a restricted service account, and revoke access when no longer needed.
A user or agent could overestimate what the skill safely supports and invoke it for sensitive or unrelated business tasks.
The overview contains many broad or seemingly unrelated business/legal concepts, making the actual supported Freshsales scope unclear and potentially overstated.
"Freshsales Overview" lists items including "Referral Program", "Franchise Program", "Merger", "Patent", "Scholarship", and "Confidential Information"
Treat the listed capabilities as unverified until confirmed against Freshsales documentation and the actual authorization scopes.