Scan Report
5 /100
flipando
Flipando integration for managing Deals, Persons, Organizations, Leads, Projects, Activities via Membrane CLI
This skill is purely documentation-based with no executable code; all behavior (shell for npm install, network for CLI calls) is clearly declared and represents standard CLI tool usage.
Safe to install
No action needed. This skill is safe to use as it contains only documentation with no hidden functionality.
| Resource | Declared | Inferred | Status | Evidence |
|---|---|---|---|---|
| Shell | WRITE | WRITE | ✓ Aligned | SKILL.md: 'npm install -g @membranehq/cli' and 'membrane' CLI commands |
| Network | READ | READ | ✓ Aligned | SKILL.md: 'Requires network access' in compatibility section |
| Filesystem | NONE | NONE | — | No file operations described |
2 findings
Medium External URL 外部 URL
https://getmembrane.com SKILL.md:7 Medium External URL 外部 URL
https://developers.mercadolibre.com.ar/en_us/flipando SKILL.md:19 File Tree
1 files · 4.7 KB · 127 lines Markdown 1f · 127L
└─
SKILL.md
Markdown
Security Positives
✓ Pure documentation skill with no executable code
✓ All shell commands (npm install, membrane CLI) explicitly documented
✓ Network access declared in compatibility requirements
✓ Credentials handled server-side by Membrane CLI, no local secret storage
✓ No hidden functionality or obfuscation detected
✓ No suspicious patterns (base64, curl|bash, eval) present
✓ No credential harvesting or data exfiltration
✓ Standard CLI tool usage pattern