advantage-csp
Pass
Audited by Gen Agent Trust Hub on May 2, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the installation of the
@membranehq/clipackage from the official npm registry. This is the vendor's standard tool for interacting with their platform. - [COMMAND_EXECUTION]: The skill utilizes shell commands through the
membraneCLI to perform login operations, list connections, and execute actions. These commands are core to the integration's functionality. - [DATA_EXFILTRATION]: The skill explicitly directs the agent to let the platform handle authentication and warns against asking users for secrets or API keys. This practice minimizes the risk of credential exposure in logs or local environments.
Audit Metadata