Back to skill
Skillv2.1.0
ClawScan security
Melies · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 17, 2026, 5:01 PM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The Melies CLI skill is internally consistent with its stated purpose (a CLI for melies.co); required env vars, files, install, and runtime behavior align with a typical API-backed CLI.
- Guidance
- This skill appears to do what it says: a CLI that talks to melies.co. Before installing, confirm you trust the melies npm package and the melies.co domain. Be aware the CLI saves your API token to ~/.melies/config.json and will open a browser and run a short-lived localhost server during the login flow — both are standard but mean the token is stored locally. Only provide a token with the minimum needed permissions and do not set MELIES_API_URL to an untrusted host (changing it could redirect your token/requests). If you need stronger assurance, review the package source on the upstream repo and install from a verified registry account.
Review Dimensions
- Purpose & Capability
- okName/description (AI filmmaking CLI) match the code, SKILL.md, and package.json. Requested binaries (melies), declared config path (~/.melies/config.json), and env vars (MELIES_TOKEN, MELIES_API_URL) are appropriate for a networked CLI that authenticates to melies.co. The node/npm install of the 'melies' package is proportionate.
- Instruction Scope
- noteSKILL.md and the code instruct normal CLI operations: npm install, melies login (browser flow or token), generation commands, and optional --sync/--dry-run. Runtime code starts a local HTTP listener to receive an auth callback and opens a browser (child_process.exec) — this is common for CLI OAuth flows but worth noting. The CLI reads/writes only its declared config file (~/.melies/config.json) and calls the melies API; it does not attempt to read other system files or unrelated credentials.
- Install Mechanism
- okInstall spec is a published Node package ('melies') that creates the 'melies' binary. No downloads from ad-hoc URLs or archive extraction is used. The package.json and built/dist files are present and consistent with the SKILL.md.
- Credentials
- noteOnly MELIES_TOKEN (primary credential) and MELIES_API_URL are required — reasonable for an API-backed CLI. One caution: MELIES_API_URL (and the config file) can be overridden; if pointed to a malicious endpoint, a token could be sent to an attacker-controlled server. Ensure you only set MELIES_API_URL to trusted endpoints and use tokens with appropriate scope/limits.
- Persistence & Privilege
- okThe skill does not request always:true and uses normal autonomous invocation. It stores its own token to ~/.melies/config.json (consistent with a CLI) and does not modify other skills or system-wide settings.