centra
Pass
Audited by Gen Agent Trust Hub on Apr 28, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill interacts with the Centra platform using the Membrane CLI tool. Commands such as
membrane action listandmembrane action runare part of the standard operational workflow for managing platform actions. - [EXTERNAL_DOWNLOADS]: The skill requires the installation of the
@membranehq/clipackage from the public NPM registry. This package is an official resource provided by the vendor (Membrane) and is necessary for the skill's functionality. - [CREDENTIALS_UNSAFE]: Authentication is managed through the official
membrane loginflow. The skill correctly avoids requesting API keys or tokens directly from the user, relying on the platform's server-side credential management. - [SAFE]: No evidence of obfuscation, malicious data exfiltration, or unauthorized privilege escalation was detected. The generic boilerplate text in the metadata description appears to be a minor documentation error and does not pose a security risk.
Audit Metadata