Scan Report
0 /100
pci-booking
PCI Booking integration for hotels to manage credit card data and PCI DSS compliance
This is a simple documentation-only skill (SKILL.md) for PCI Booking integration using the Membrane CLI. All behavior is explicitly documented with no hidden functionality.
Safe to install
No action required. This skill is safe to use.
| Resource | Declared | Inferred | Status | Evidence |
|---|---|---|---|---|
| Filesystem | NONE | NONE | — | |
| Network | READ | READ | ✓ Aligned | membrane request proxy for PCI Booking API |
| Shell | WRITE | WRITE | ✓ Aligned | npm install -g @membranehq/cli; membrane CLI commands |
| Environment | NONE | NONE | — | |
| Skill Invoke | NONE | NONE | — | |
| Clipboard | NONE | NONE | — | |
| Browser | NONE | NONE | — | |
| Database | NONE | NONE | — |
2 findings
Medium External URL 外部 URL
https://getmembrane.com SKILL.md:7 Medium External URL 外部 URL
https://developer.pcibooking.net/ SKILL.md:19 File Tree
1 files · 4.5 KB · 127 lines Markdown 1f · 127L
└─
SKILL.md
Markdown
Security Positives
✓ Documentation-only skill with no hidden code or scripts
✓ All shell commands are explicitly documented (npm install, membrane CLI)
✓ Network access is limited to PCI Booking API through Membrane proxy
✓ Uses OAuth/browser-based authentication, no credential storage on disk
✓ Credential management is delegated to Membrane (transparently refreshed server-side)
✓ No credential harvesting, data exfiltration, or obfuscation observed
✓ Best practices clearly documented (prefer built-in actions over raw API calls)