Skillv1.0.3

ClawScan security

Servicenow · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignApr 21, 2026, 1:03 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill is internally consistent: it instructs the agent to use the Membrane CLI to interact with ServiceNow, and its requirements match that workflow — no unexplained credential requests or unrelated install actions are present.
Guidance: This skill is coherent with its stated purpose, but review a few practical points before installing: 1) The SKILL asks you to install the Membrane CLI (a third‑party global npm package) — verify the package name, publisher (@membranehq), and version against your org policy before installing. 2) Authentication and ServiceNow credentials are handled by Membrane; confirm where credentials and API data will be stored and whether sending ServiceNow data through Membrane is acceptable for your security/compliance constraints. 3) Use least-privilege ServiceNow connections and, if possible, a test tenant or scoped account. 4) Because the skill runs Membrane CLI commands, be cautious in headless/automated environments (follow the headless login flow as documented). If you need deeper assurance, ask the skill author for a provenance statement (source repo tag/release) or perform an independent review of the @membranehq/cli package and the Membrane service.

Purpose & Capability: okThe name/description (ServiceNow integration) match the instructions: all commands are Membrane CLI operations for listing, creating, and running actions against a ServiceNow connector. No unrelated credentials, binaries, or config paths are requested.
Instruction Scope: okSKILL.md only instructs installing/using the Membrane CLI, authenticating via Membrane, creating a ServiceNow connection, searching for and running actions. It does not direct the agent to read arbitrary local files, access unrelated env vars, or exfiltrate data to unexpected endpoints.
Install Mechanism: noteThe skill is instruction-only (no install spec), but it tells users to run 'npm install -g @membranehq/cli@latest'. This is appropriate for the stated workflow, but installing a global npm package executes third-party code on the host — users should verify the package and publisher before installing.
Credentials: okThe manifest does not request any environment variables or credentials. Authentication is delegated to the Membrane CLI and the user’s Membrane account/connection. Requested access is proportional to the stated ServiceNow integration purpose.
Persistence & Privilege: okalways is false and the skill is user-invocable; it does not request persistent privileged presence or attempt to modify other skills or system-wide agent settings. Autonomous invocation is allowed by default but is not combined with other red flags.