ClawHub

Fraudlabs Pro

v1.0.2

FraudLabs Pro integration. Manage data, records, and automate workflows. Use when the user wants to interact with FraudLabs Pro data.

0· 130·0 current·0 all-time
byVlad Ursul@gora050
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
medium confidence
Purpose & Capability
Name/description match the instructions: all steps describe installing the Membrane CLI, authenticating, creating a FraudLabs Pro connector, running actions, or proxying to the FraudLabs Pro API. No unrelated credentials, binaries, or config paths are requested.
Instruction Scope
Instructions stay within the FraudLabs Pro integration workflow (install CLI, login, connect, run actions, proxy requests). Note: the Skill explicitly shows using `membrane request` to proxy arbitrary API paths — this is expected for a proxying integration but does permit sending arbitrary request payloads through Membrane, so treat any data you submit as potentially exfiltratable if misused.
Install Mechanism
Install uses npm: `npm install -g @membranehq/cli`. Using the public npm registry is expected for a CLI, but global npm installs run code on your machine and may require elevated privileges; verify the package and publisher before installing.
Credentials
No environment variables or unrelated credentials are requested. Authentication is delegated to Membrane (browser-based login and connector auth), which is proportionate to the stated purpose.
Persistence & Privilege
Skill does not request 'always' or system-wide agent privileges. The only persistence implied is the user installing the Membrane CLI (normal for a CLI-based integration). The skill does not modify other skills or system configs per the provided instructions.
Assessment
This skill is internally consistent: it uses the Membrane CLI to manage FraudLabs Pro connectors and actions. Before installing or using it, verify you trust the Membrane CLI package and its publisher (review the npm package page and the linked GitHub repo), because `npm install -g` executes code on your machine. Be mindful when using `membrane request` (proxy) — it can send arbitrary data to external endpoints, so avoid passing secrets or unrelated sensitive data through it. Use a scoped Membrane account/connector with least privilege, monitor audit logs on your Membrane account and FraudLabs Pro, and consider running the CLI in a restricted environment (container or VM) if you have high-risk data or limited trust in the publisher.

Like a lobster shell, security has layers — review code before you run it.

latestvk9786xtzrpr0n7keq5h40bqcph8431mz

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments