castmagic
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the Membrane CLI from the official NPM registry using
npm install -g @membranehq/cli@latest. This is a well-known service and the package belongs to the skill's authoring organization. - [COMMAND_EXECUTION]: The skill uses various
membraneCLI commands to manage authentication, list connections, and execute actions. These commands are part of the intended functionality of the skill to interface with the Castmagic API. - [CREDENTIALS_UNSAFE]: The skill explicitly follows security best practices by instructing the agent to never ask for API keys. It offloads credential management to the Membrane platform, which handles authentication server-side.
Audit Metadata