Back to skill
Skillv1.0.3
ClawScan security
Pagerduty · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 21, 2026, 5:05 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is an instruction-only PagerDuty integration that uses the Membrane CLI for auth and API calls; its requirements and instructions are coherent with that purpose.
- Guidance
- This skill is an instructions-only wrapper that tells you to install the Membrane CLI and use your Membrane account to connect to PagerDuty. Before installing: verify you trust the @membranehq npm package (check npm/GitHub repo and maintainers), be aware that npm -g writes to your system (may require elevated permissions), and review the OAuth scopes presented when connecting PagerDuty so you only grant needed access. The skill itself does not request unrelated credentials; however, the Membrane CLI will carry the authority to act on your behalf in PagerDuty once authorized.
Review Dimensions
- Purpose & Capability
- okName/description match the instructions: the skill directs the agent to use the Membrane CLI to manage PagerDuty resources. There are no unrelated environment variables, binaries, or config paths requested.
- Instruction Scope
- okSKILL.md stays on-topic: it instructs installing Membrane CLI, performing Membrane login, creating a PagerDuty connection, discovering and running actions. It does not instruct reading unrelated files or exfiltrating secrets.
- Install Mechanism
- noteInstallation is an npm global install (npm install -g @membranehq/cli@latest). This pulls code from the public npm registry (moderate risk compared to no install). The skill is instruction-only and does not auto-install anything, but the user must install a third‑party CLI to use it.
- Credentials
- okNo environment variables, credentials, or config paths are declared. Authentication is delegated to Membrane (browser-based OAuth/authorization), which is consistent for this integration.
- Persistence & Privilege
- okalways is false and the skill does not request persistent/system-wide privileges. Autonomous invocation is allowed (platform default) and is not combined with any broad credential access.