Keysender
v1.0.0Keysender integration. Manage data, records, and automate workflows. Use when the user wants to interact with Keysender data.
⭐ 0· 64·0 current·0 all-time
byMembrane Dev@membranedev
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name and description promise a Keysender integration and the SKILL.md exclusively documents using the Membrane CLI to connect to Keysender and run actions — the required capabilities match the stated purpose.
Instruction Scope
Instructions are narrowly scoped to installing/using the Membrane CLI, creating a connection, listing actions, running actions, and proxying API requests. They do not ask the agent to read unrelated files, access unrelated environment variables, or exfiltrate data to unexpected endpoints. They do require interactive authentication via browser (or headless code flow).
Install Mechanism
This is an instruction-only skill (no install spec), and it tells users to install @membranehq/cli via npm (global). That is a reasonable, expected install step for this integration, but installing global npm packages requires trust in the package and network access; the skill itself does not automatically install code.
Credentials
No environment variables, credentials, or config paths are requested by the skill. Authentication is delegated to Membrane's browser-based flow, which fits the stated approach of letting Membrane manage credentials.
Persistence & Privilege
The skill is not always-enabled and does not request persistent system-wide privileges. Default autonomous invocation is allowed (platform default) but the skill does not request elevated persistence or modify other skills' configs.
Assessment
This skill is coherent: it instructs you to use the Membrane CLI to connect to Keysender and does not itself ask for secrets. Before installing or using it, verify you trust the @membranehq/cli npm package and the Membrane service (review their homepage, docs, and privacy policy). Be aware authentication occurs via a browser flow and that requests and credentials will be handled by Membrane's servers — if you have policies restricting third-party SaaS access to customer data, check that first. Finally, the skill expects you to run CLI commands (including global npm install) — only proceed if you're comfortable installing that package on your machine or environment.Like a lobster shell, security has layers — review code before you run it.
latestvk97aejvm1025xwbqdet1nnvnc184b6jp
License
MIT-0
Free to use, modify, and redistribute. No attribution required.