Back to skill
Skillv1.0.3
ClawScan security
Solar Nexus · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 21, 2026, 3:04 PM
- Verdict
- benign
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill is internally consistent with its stated purpose (it instructs the agent to use the Membrane CLI to interact with Solar Nexus) but a small metadata inconsistency and the requirement to install a third‑party CLI are worth noting before install.
- Guidance
- This skill appears to do what it says: it relies on Membrane's CLI to access Solar Nexus. Before installing, verify the @membranehq/cli package and its publisher (review the npm org and GitHub repo), and decide whether you are comfortable running a global npm install. The login flow opens a browser and issues auth codes — treat those codes as sensitive and don’t paste them into untrusted chats. If you prefer, run the CLI in an isolated environment (container or VM) and verify the Membrane account/connector settings on getmembrane.com. Finally, note the manifest did not list 'membrane' or 'npm' as required binaries—ask the publisher to update the metadata for clarity if that matters to you.
Review Dimensions
- Purpose & Capability
- noteThe skill's name and description match the runtime instructions: it uses Membrane to talk to the Solar Nexus connector and manage projects/users. However, the package metadata declares no required binaries or env vars while the SKILL.md instructs installing and using the 'membrane' CLI (via 'npm install -g @membranehq/cli'), so the manifest omissions are an inconsistency.
- Instruction Scope
- okSKILL.md confines runtime actions to installing and invoking the Membrane CLI (login, connection, action list/run/create). It does not instruct reading arbitrary local files or unrelated credentials, nor does it direct data to unexpected endpoints beyond Membrane/Solar Nexus.
- Install Mechanism
- noteThere is no formal install spec in the registry (instruction-only), but the README asks the user to run a global npm install. This is a user-driven install of a third-party CLI (normal for integrations) — it means code will be installed on the host if the user follows the instructions. No direct downloads from untrusted URLs are suggested.
- Credentials
- okThe skill declares no required environment variables or credentials and advises using Membrane's auth flow (browser-based login). It does not ask for unrelated secrets. The lack of declared required binaries (membrane/npm) is the only proportionality gap.
- Persistence & Privilege
- okalways:false and normal autonomous invocation are used. The skill does not request persistent system privileges or claim to modify other skills or system-wide agent settings.