ClawHub

Crowdstrike

v1.0.2

CrowdStrike integration. Manage data, records, and automate workflows. Use when the user wants to interact with CrowdStrike data.

0· 81·0 current·0 all-time
byMembrane Dev@membranedev
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Pending
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description say 'CrowdStrike integration' and the instructions only describe using the Membrane CLI to create connections, list actions, run actions, and proxy API requests to CrowdStrike — these requirements are appropriate for that purpose.
Instruction Scope
SKILL.md confines runtime actions to installing/using the Membrane CLI, logging in via browser, creating a CrowdStrike connection, listing/running actions, and optionally proxying requests through Membrane. It does not instruct reading unrelated files, environment variables, or system config.
Install Mechanism
The instructions tell users to install @membranehq/cli via npm (-g). That is a reasonable, common install method for a CLI, but it does write code to disk and requires trusting the npm package and its maintainer. No other install source or downloads are used.
Credentials
The skill declares no required environment variables or credentials and relies on Membrane to manage auth; requesting no local secrets is proportionate. Note: using Membrane means external (Membrane) servers will hold or proxy CrowdStrike credentials/session tokens.
Persistence & Privilege
Skill is instruction-only, not always-enabled, and does not request system-level persistence or modify other skills' configs. Agent autonomous invocation remains enabled (platform default) but is not a unique concern here.
Assessment
This skill appears coherent: it simply documents how to use the Membrane CLI to interact with CrowdStrike. Before installing or using it, consider: (1) you will need a Membrane account and to install @membranehq/cli from npm — verify the package and publisher; (2) Membrane will handle CrowdStrike authentication and proxy requests, so you are trusting Membrane with access to your CrowdStrike data and credentials — review their security/privacy and the permissions granted when you connect; (3) installing a global npm package requires elevated privileges on some systems — install only from a trusted environment; (4) the 'membrane request' capability can proxy arbitrary API calls — be cautious about what data the agent is asked to send or retrieve to avoid unintended data exposure. If you want extra assurance, verify the referenced repository and Membrane's official docs, and prefer using least-privileged CrowdStrike connection permissions.

Like a lobster shell, security has layers — review code before you run it.

latestvk97c8y1naeyjyz817fqp0jk991842b53

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments