ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Moonmail

v1.0.2

MoonMail integration. Manage Organizations. Use when the user wants to interact with MoonMail data.

0· 104·0 current·0 all-time
byMembrane Dev@membranedev
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
The name/description (MoonMail integration) matches the instructions (use Membrane to proxy to MoonMail). However the manifest lists no required binaries or environment variables while the SKILL.md expects the Membrane CLI to be installed and network access plus a Membrane account — the declared requirements are incomplete/inaccurate.
Instruction Scope
Instructions are narrowly focused on using the Membrane CLI to authenticate, create connections, list actions, run actions, and proxy requests to MoonMail. They do not ask the agent to read unrelated files, export arbitrary environment variables, or exfiltrate data beyond the Membrane-proxied API calls.
!
Install Mechanism
There is no install spec in the skill bundle, but the SKILL.md tells the user to run `npm install -g @membranehq/cli` (and suggests npx usage). Global npm installs execute package install scripts and introduce supply-chain risk if the package or registry is compromised. The skill not declaring the required binary is a mismatch that affects install-time security assumptions.
Credentials
The skill requests no environment variables or local credentials. It explicitly recommends letting Membrane handle credentials server-side rather than asking for API keys. The requested access (a Membrane account and network) is proportional to the stated purpose.
Persistence & Privilege
The skill is not always-on and allows user invocation. It does not request elevated privileges, persistent system changes, or modifications to other skills' configurations in the provided instructions.
What to consider before installing
This skill appears to be an instruction-only helper that relies on the Membrane CLI and a Membrane account to proxy requests to MoonMail. Before installing/using it: (1) verify you trust the @membranehq/cli npm package and the Membrane service (check the package on npm, its maintainer, and the linked repo/homepage); (2) prefer transient invocation like `npx @membranehq/cli@latest` instead of a global `npm install -g` to reduce long-lived supply-chain risk; (3) be aware that installing npm packages runs code during install and could introduce risk if the package or registry is compromised; (4) confirm the skill's manifest/metadata are accurate — the skill should declare that it requires the Membrane CLI and network access; and (5) if you need stronger assurance, ask the maintainer for a signed release or a reproducible install mechanism and verify the official Membrane documentation for the recommended integration steps.

Like a lobster shell, security has layers — review code before you run it.

latestvk9715jp4xvh7h0rhfhd4cwsv25843m3p

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments