burp-suite
Pass
Audited by Gen Agent Trust Hub on Apr 30, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the
@membranehq/clipackage globally via NPM. This is a verified vendor resource belonging to the Membrane platform and is fetched from the official public registry. - [COMMAND_EXECUTION]: Employs shell commands to interact with the
membraneCLI for authentication, connection management, and action execution. These operations are restricted to the tool's intended functionality for Burp Suite integration. - [CREDENTIALS_UNSAFE]: Explicitly advises against asking for or storing sensitive API keys or tokens locally, instead delegating authentication to the Membrane platform's secure server-side connection manager.
Audit Metadata