apptweak
Pass
Audited by Gen Agent Trust Hub on Apr 28, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONCREDENTIALS_UNSAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill guides the user to install the official Membrane CLI tool via
npm install -g @membranehq/cli@latest. This is a standard procedure for using the vendor's platform. - [COMMAND_EXECUTION]: Various
membraneCLI commands are used to perform authentication, create connections to the AppTweak API, and execute actions. These commands are necessary for the skill's functionality and use the vendor's own tooling. - [CREDENTIALS_UNSAFE]: The skill specifically advises against asking users for API keys or tokens, instead utilizing a browser-based authentication flow managed by the Membrane platform. This significantly reduces the risk of credential leakage or exposure.
Audit Metadata