checkmarx
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the
@membranehq/clipackage globally via npm, which is the official tool provided by the vendor for interacting with their platform. - [COMMAND_EXECUTION]: Executes terminal commands through the
membranebinary to manage connections, search for security actions, and run scans against Checkmarx projects. - [COMMAND_EXECUTION]: Includes functionality to create new integration actions dynamically via the
membrane action createcommand, which is a core feature of the Membrane automation service.
Audit Metadata