Back to skill
Skillv1.0.1
ClawScan security
Ubuntu Landscape · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 22, 2026, 6:38 PM
- Verdict
- benign
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill is internally consistent: it uses the Membrane CLI to integrate with Ubuntu Landscape, asks for a networked Membrane account and browser-based login, and does not request unrelated credentials or system access — but it instructs installing a third-party npm CLI which you should verify before running.
- Guidance
- This skill is coherent with its stated purpose, but before installing anything: 1) verify the @membranehq/cli package and its publisher (check the npm page and the GitHub repo referenced in SKILL.md) because global npm installs run code during install; 2) be prepared that a global install may require elevated permissions (sudo) on some systems; 3) confirm you trust Membrane as the intermediary — the CLI will manage connections and actions that can interact with your Ubuntu systems; 4) the skill does not ask for local API keys or extra env vars, and authentication is via browser/headless code flow. If you need higher assurance, review the Membrane CLI source and package release artifacts before running the install command.
Review Dimensions
- Purpose & Capability
- okThe name/description (Ubuntu Landscape management) matches the runtime instructions: the skill uses Membrane to create connections, discover and run actions against Ubuntu resources. There are no unrelated environment variables, binaries, or config paths requested.
- Instruction Scope
- okSKILL.md stays within scope: it instructs installing and using the Membrane CLI, authenticating via browser or headless code flow, creating a connection, discovering and running actions, and recommends using Membrane for credential handling. It does not ask the agent to read arbitrary files, export unrelated credentials, or send data to unexpected endpoints.
- Install Mechanism
- noteThere is no formal registry install spec, but the instructions ask the user to run `npm install -g @membranehq/cli@latest` (and sometimes use npx). Installing a global npm package runs code from the npm registry and can execute install scripts; this is a moderate-risk action that users should verify (publisher, package integrity) before running. The SKILL.md's commands themselves are otherwise standard for a CLI-based integration.
- Credentials
- okThe skill declares no required env vars, primary credential, or config paths. Authentication is delegated to Membrane's login flow (browser/code exchange), which avoids asking for local API keys or secrets. The requested permissions appear proportionate to the described functionality.
- Persistence & Privilege
- okalways is false and the skill is user-invocable. Autonomous model invocation is allowed (default) but not combined with broad environment access or other elevated privileges. The skill does not request persistent system-wide configuration changes in its instructions.