cherwell-itsm
Pass
Audited by Gen Agent Trust Hub on May 2, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the official
@membranehq/clipackage from the NPM registry. This package is maintained by the skill's vendor and is necessary for its operation. - [COMMAND_EXECUTION]: The skill performs operations by executing shell commands via the
membraneCLI, including authentication login, action discovery, and workflow execution. This is the standard operational procedure for the Membrane integration framework. - [DATA_EXFILTRATION]: The skill transmits data between the agent's environment and the Cherwell ITSM service via the Membrane infrastructure (
getmembrane.com). This communication is required for the skill's core functionality of managing remote ITSM data.
Audit Metadata