Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
R3
v1.0.0R3 integration. Manage data, records, and automate workflows. Use when the user wants to interact with R3 data.
⭐ 0· 44·0 current·0 all-time
byMembrane Dev@membranedev
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
OpenClaw
Benign
high confidencePurpose & Capability
The name/description (R3 integration) align with the instructions: all runtime steps use the Membrane CLI to connect to R3 connectors, list actions/connections, and perform queries. Nothing in the skill asks for unrelated cloud credentials or access that would be inconsistent with an integration skill.
Instruction Scope
SKILL.md stays on-topic: it instructs installing and using @membranehq/cli, logging in via browser (or headless flow), and running membrane commands to manage connectors, connections, and actions. It does not direct the agent to read arbitrary system files, other credentials, or exfiltrate data to third-party endpoints beyond Membrane.
Install Mechanism
There is no formal install spec in the package manifest, but the instructions ask users to run `npm install -g @membranehq/cli`. Installing a public npm CLI is a moderate-risk operation (global install writes to system paths and npm packages may run install scripts). The package name and homepage align (membrane), which reduces concern, but users should verify the npm package and its publisher before installing globally.
Credentials
The skill declares no required env vars or credentials. Runtime behavior requires a Membrane account and interactive authentication via browser (or headless code exchange), which is proportional to the task and expected for a CLI-based integration. The skill does not request unrelated secrets.
Persistence & Privilege
Skill does not request always:true or request to modify other skills or system-wide agent settings. It does ask the user to install a CLI (which will persist on the system), but the skill itself is instruction-only and does not demand permanent agent-level privileges.
Assessment
This skill is instruction-only and appears internally consistent: it uses the Membrane CLI to connect to R3 and requires a Membrane account for browser-based authentication. Before installing, verify the npm package @membranehq/cli (check the publisher, download counts, and repository code) and confirm you are comfortable installing a global npm package (it writes to system paths and may run install scripts). If you prefer less risk, run the CLI in an isolated/test environment or a container. Also confirm the homepage/repository URLs (getmembrane.com and the GitHub repo) match your expectations and that the connectors you create are the intended R3 endpoints.Like a lobster shell, security has layers — review code before you run it.
latestvk973c8zwazzsq5q9yt47pqbeen84ezb5
License
MIT-0
Free to use, modify, and redistribute. No attribution required.