ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Moneyhub Enterprise

v1.0.0

Moneyhub Enterprise integration. Manage data, records, and automate workflows. Use when the user wants to interact with Moneyhub Enterprise data.

0· 48·0 current·0 all-time
byMembrane Dev@membranedev
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
CryptoCan make purchases
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The skill's name and description match the instructions: it uses Membrane to interact with Moneyhub Enterprise. Minor inconsistency: the registry metadata lists no required binaries or install steps, but SKILL.md explicitly instructs the user to install the @membranehq/cli NPM package and to run the 'membrane' CLI. That is reasonable for this purpose but worth noting because installation is required even though the manifest didn't declare it.
Instruction Scope
SKILL.md is focused on the advertised task: installing the Membrane CLI, logging in, creating/inspecting connections, listing and running actions, and proxying API requests. It does not instruct reading unrelated files, accessing unrelated env vars, or sending data to endpoints outside the Membrane/Moneyhub flow. It explicitly advises not to ask users for API keys.
Install Mechanism
There is no formal install spec in the package manifest; instead the README instructs the user to run 'npm install -g @membranehq/cli' (and sometimes uses npx). Installing a global NPM package is a common, moderate-risk action (public registry code will run on the host). No unusual or remote download URLs are recommended.
Credentials
The skill declares no required environment variables or credentials and relies on Membrane to manage authentication. That is appropriate for a connector integration — no unrelated secrets are requested.
Persistence & Privilege
The skill does not request 'always: true' or system-wide configuration changes. It is instruction-only and requires a manual CLI install; it does not claim permanent elevated presence in the agent. The agent may invoke it autonomously (default behavior), which is expected for skills of this type.
Assessment
This skill appears coherent, but review these practical points before installing: (1) The SKILL.md asks you to install a global NPM package (@membranehq/cli). Installing packages runs third-party code on your machine — verify the publisher and review the package (or install in an isolated environment) before running it. (2) The skill relies on a Membrane account and will authorize access to Moneyhub Enterprise data; ensure you trust Membrane and understand where credentials/tokens are stored and how consent is managed. (3) The manifest didn't declare the CLI dependency even though the docs require it — expect to perform manual installation. (4) If you are concerned about an agent invoking this autonomously, restrict or review agent permissions or run the CLI in a controlled environment. If you want extra assurance, verify the referenced homepage/repository (getmembrane.com and the GitHub repo) and inspect the @membranehq/cli package source before use.

Like a lobster shell, security has layers — review code before you run it.

latestvk976wafbd7b58wgsybj9q0tr4h84b38z

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments