actindo
Pass
Audited by Gen Agent Trust Hub on Apr 30, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent to execute shell commands using the
membraneCLI. These commands are used to log in, connect to Actindo, and execute actions like searching for or retrieving orders and products. All commands are standard for the tool's documented purpose. - [EXTERNAL_DOWNLOADS]: The skill documentation includes steps to install the
@membranehq/clipackage from the official NPM registry. This is a legitimate utility provided by the skill author (membranedev) to facilitate the integration. - [CREDENTIALS_UNSAFE]: The skill follows security best practices by advising against asking users for API keys. Instead, it uses a connection-based model where the Membrane platform manages the authentication lifecycle server-side, preventing credential exposure within the agent's environment.
Audit Metadata