alexishr
Pass
Audited by Gen Agent Trust Hub on May 2, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill documentation instructs users to install the
@membranehq/clipackage from the official npm registry. This is a legitimate tool provided by the vendor (membranedev) to facilitate the integration. - [COMMAND_EXECUTION]: The skill uses various
membraneCLI commands to authenticate (membrane login), manage connections (membrane connect), and execute tasks (membrane action run). These commands are part of the platform's standard workflow and are used for their intended purpose. - [SAFE]: The skill follows recommended security protocols by instructing the agent to let the Membrane platform handle API credentials and tokens server-side, preventing exposure of sensitive secrets within the agent's context or local environment.
Audit Metadata