中文 EN

Scan Report

Scan New Files

Low Risk — Risk Score 20/100
Last scan:2 days ago Rescan
20 /100
search-api
Search API integration for managing Deals, Persons, Organizations, Leads, Projects, and Pipelines
Documentation-only skill that integrates with Membrane CLI for Search API; all capabilities are properly declared with no hidden functionality detected.
Skill Namesearch-api
Duration24.2s
Enginepi
Safe to install
No immediate action required. The skill uses standard npx patterns for CLI tool execution and declares all network/shell access. Consider pinning the Membrane CLI version in production rather than using @latest.

Findings 2 items

Severity Finding Location
Low
Unpinned CLI version with @latest
The skill uses 'npx @membranehq/cli@latest' which may fetch different code versions over time. While not inherently malicious, this is a supply chain risk.
npx @membranehq/cli@latest login --tenant
→ Pin to a specific version (e.g., @membranehq/[email protected]) after initial testing to ensure reproducible behavior.
 SKILL.md:25
Low
Credentials stored in user home directory
The skill stores authentication credentials in ~/.membrane/credentials.json. While this is declared, it creates a credential file that could be targeted.
credentials are stored in ~/.membrane/credentials.json
→ Ensure the user's home directory has appropriate access controls. The skill should not exfiltrate these credentials externally.
 SKILL.md:29
ResourceDeclaredInferredStatusEvidence
Network READ READ ✓ Aligned SKILL.md line 1: Requires network access
Shell WRITE WRITE ✓ Aligned SKILL.md: All npx commands use bash execution
Filesystem NONE READ ✓ Aligned SKILL.md: Reads ~/.membrane/credentials.json (implicit READ for credential stora…
1 findings
🔗
Medium External URL 外部 URL
https://developers.google.com/custom-search/v1/reference/rest
SKILL.md:17

File Tree

1 files · 4.5 KB · 115 lines
Markdown 1f · 115L
└─ 📝 SKILL.md Markdown 115L · 4.5 KB

Dependencies 1 items

PackageVersionSourceKnown VulnsNotes
@membranehq/cli latest npx No Version unpinned - use @latest could fetch different code

Security Positives

✓ Documentation-only skill with clear, readable SKILL.md
✓ All shell commands documented with expected behavior
✓ No base64-encoded payloads or obfuscated code
✓ No environment variable enumeration for credential theft
✓ No remote IP connections without declared proxy (Membrane)
✓ Network access is properly declared as required
✓ No suspicious patterns like curl|bash or wget|sh
✓ Credentials are handled by Membrane CLI (a known tool), not custom exfiltration code