Scan Report
0 /100
beekeeper
Beekeeper integration for frontline worker communication platform management
Beekeeper integration skill is well-documented with all behavior declared; uses standard Membrane CLI for authentication and API operations with no hidden functionality.
Safe to install
This skill is safe to use. No security concerns identified.
| Resource | Declared | Inferred | Status | Evidence |
|---|---|---|---|---|
| Network | READ | READ | ✓ Aligned | SKILL.md:6 - 'Requires network access' |
| Shell | WRITE | WRITE | ✓ Aligned | SKILL.md:28 - npm install, membrane CLI commands |
| Filesystem | NONE | NONE | — | No file operations declared or observed |
| Environment | NONE | NONE | — | SKILL.md:79 - 'never ask the user for API keys' |
2 findings
Medium External URL 外部 URL
https://getmembrane.com SKILL.md:7 Medium External URL 外部 URL
https://developer.beekeeper.io/ SKILL.md:19 File Tree
1 files · 5.5 KB · 146 lines Markdown 1f · 146L
└─
SKILL.md
Markdown
Security Positives
✓ All functionality clearly documented in SKILL.md
✓ Authentication delegated to Membrane CLI with no local secret storage
✓ No credential harvesting or exfiltration observed
✓ No base64, obfuscation, or suspicious encoding patterns
✓ No direct IP network requests or C2 communication
✓ No sensitive file/path access (.ssh, .aws, .env)
✓ No curl|bash or remote script execution patterns
✓ Standard npm install for CLI tool installation (documented)
✓ Best practices documented: prefer pre-built actions over raw API calls