by 安全扫描
OpenClaw
可疑
medium confidenceThe skill's purpose (integrate with Tyk) is coherent, but the runtime instructions require installing and using the third‑party Membrane CLI (via npm) and rely on a remote Membrane account/service while the skill metadata omits declaring Node/npm and network requirements — this mismatch and use of an unpinned external CLI are reasons for caution.
评估建议
Before installing or using this skill: (1) be aware it requires Node/npm and network access even though metadata doesn't declare them — you should have Node/npm installed. (2) The skill routes Tyk interactions through Membrane: you will authenticate via 'membrane login' and must trust Membrane to store and manage credentials and to proxy API calls. Review Membrane's security/privacy and prefer pinned CLI versions (avoid '@latest') or validate the package source. (3) Installing a global npm packa...详细分析 ▾
ℹ 用途与能力
The skill claims to integrate with Tyk and the SKILL.md consistently instructs the agent to use the Membrane CLI to talk to Tyk. That general purpose matches the instructions. However, the skill metadata declares no required binaries or network requirement while the instructions explicitly require network access and installing the Membrane CLI (npm/node). The omission of required binaries in metadata is an inconsistency.
ℹ 指令范围
All instructions relate to connecting to Tyk through Membrane: installing the CLI, running membrane login, connecting with connectorKey tyk, listing/creating/running actions. The instructions do not ask the agent to read unrelated files or environment variables. They do, however, direct the user/agent to authenticate via a browser/auth-code flow and to rely on Membrane to manage credentials, which means API credentials and request/response data will flow through Membrane's service.
⚠ 安装机制
There is no install spec in the skill metadata, but the SKILL.md tells users/agents to run 'npm install -g @membranehq/cli@latest' and uses 'npx @membranehq/cli@latest'. Installing an unpinned global npm package is a moderate risk (external code executed), and the skill did not declare that Node/npm are required. The install source (npm registry) is common but the use of @latest and global installs should be flagged and, ideally, pinned and declared explicitly.
ℹ 凭证需求
The skill declares no required environment variables or credentials; instead it relies on an interactive 'membrane login' flow and on Membrane to store/manage credentials server-side. That is proportionate to the stated purpose but requires trusting Membrane with access to your Tyk account and data. The absence of declared secrets in metadata is consistent with the SKILL.md approach but might understate the credentialing implications.
✓ 持久化与权限
The skill is instruction-only, has no install spec, and does not request 'always: true' or system-wide changes. Autonomous invocation is allowed (platform default); combined with network access, that means an agent could call Membrane actions autonomously — normal but something to be aware of.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
安装命令
点击复制官方npx clawhub@latest install tyk
镜像加速npx clawhub@latest install tyk --registry https://cn.longxiaskill.com镜像同步中