reviewstudio 安全扫描报告 — 低风险 | ClawSafe

10 /100

reviewstudio

Review Studio integration for managing data, records, and workflow automation via Membrane CLI

Review Studio integration skill using the legitimate Membrane CLI; all capabilities are properly declared and no hidden functionality was detected.

技能名称reviewstudio

分析耗时29.6s

引擎pi

✓

可以安装

Skill is safe for use. Monitor for any changes to the Membrane CLI package or domain that could introduce supply-chain risks.

安全发现 2 项

严重性	安全发现	位置
低危	Global npm package installation The skill instructs to install @membranehq/cli globally via npm install -g. Global installs can pose supply-chain risks if the package is compromised. `npm install -g @membranehq/cli` → Consider pinning to a specific version (e.g., @membranehq/[email protected]) to mitigate unexpected changes. Monitor the package for integrity.	`SKILL.md:39`
低危	External URLs to third-party domains SKILL.md contains links to getmembrane.com and support.reviewstudio.com. While these appear legitimate, domain takeovers could introduce risk. `https://getmembrane.com` → Periodically verify the legitimacy and security of linked domains.	`SKILL.md:7`

资源类型	声明权限	推断权限	状态	证据
命令执行	`WRITE`	`WRITE`	✓ 一致	SKILL.md:39 npm install -g @membranehq/cli; SKILL.md:44 membrane login; SKILL.md…
网络访问	`READ`	`READ`	✓ 一致	SKILL.md:52 membrane action list; SKILL.md:59 membrane action run; SKILL.md:74 m…
文件系统	`NONE`	`NONE`	—	No filesystem operations declared or observed
环境变量	`NONE`	`NONE`	—	No direct environment variable access; credentials managed by Membrane server-si…
技能调用	`NONE`	`NONE`	—	No cross-skill invocation declared
剪贴板	`NONE`	`NONE`	—	No clipboard access
浏览器	`NONE`	`NONE`	—	Browser used only for OAuth flow (declared), no persistent browser control
数据库	`NONE`	`NONE`	—	No database access

2 项发现

🔗

中危外部 URL 外部 URL

https://getmembrane.com

SKILL.md:7

🔗

中危外部 URL 外部 URL

https://support.reviewstudio.com/en/

SKILL.md:19

1 文件 · 4.4 KB · 124 行

Markdown 1f · 124L

└─ 📝 SKILL.md Markdown 124L · 4.4 KB

包名	版本	来源	已知漏洞	备注
`@membranehq/cli`	`latest`	npm	否	Version not pinned; global install recommended by SKILL.md

✓ All shell operations (npm install, membrane CLI) are explicitly declared in SKILL.md

✓ No credential harvesting — credentials are managed server-side by Membrane

✓ No base64, eval, or obfuscated code patterns detected

✓ No hidden HTML comments or steganographic payloads

✓ No access to sensitive local paths (~/.ssh, ~/.aws, .env)

✓ No subprocess or code execution beyond declared CLI tooling

✓ No data exfiltration or suspicious network behavior

✓ Skill is a pure documentation file with no executable code

✓ Best practices are well documented (preferring Membrane actions over raw API calls)