amazon-ses
Pass
Audited by Gen Agent Trust Hub on Apr 28, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the Membrane CLI via the official package registry (
npm install -g @membranehq/cli@latest). This is a legitimate vendor tool from the skill's author context and does not represent an unverified dependency risk. - [COMMAND_EXECUTION]: The skill uses the
membranecommand-line interface to perform operations such as logging in, connecting to services, and running actions. These commands are documented for the intended purpose of the skill and utilize the platform's authentication mechanisms to avoid handling local secrets. - [CREDENTIALS_UNSAFE]: The skill explicitly advises against asking the user for API keys or tokens, instructing the agent to use Membrane's connection system instead. This is a positive security practice that prevents credential exposure in logs or local environments.
- [SAFE]: No malicious patterns, obfuscation, or unauthorized data exfiltration attempts were detected. The skill's behavior aligns with its stated purpose of managing Amazon SES data through a managed service.
Audit Metadata