cobalt
Pass
Audited by Gen Agent Trust Hub on May 1, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill recommends installing the
@membranehq/clipackage from the npm registry. This is a vendor-owned resource used for managing integrations. - [COMMAND_EXECUTION]: The skill utilizes the
membranecommand-line interface to perform data operations, manage connections, and execute actions against the Cobalt API. - [CREDENTIALS_UNSAFE]: The skill specifically instructs the agent not to ask for API keys, instead using a secure delegated authentication flow managed by the Membrane platform.
Audit Metadata