canva
Pass
Audited by Gen Agent Trust Hub on May 1, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill guides the user to install the
@membranehq/clipackage from the official npm registry. This is a standard installation of the vendor's primary command-line tool. - [COMMAND_EXECUTION]: The skill utilizes the
membraneCLI to handle authentication, discover actions, and interact with the Canva API. These operations are restricted to the platform's intended functionality for managing integrations. - [CREDENTIALS_UNSAFE]: The skill correctly implements secure credential management by advising against the use of local API keys and instead delegating authentication to the Membrane platform's server-side connection manager.
Audit Metadata