contentful
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the Membrane CLI package (@membranehq/cli) from the official NPM registry. This tool is provided by the vendor to facilitate secure communication with the Contentful API.- [COMMAND_EXECUTION]: The skill uses various membrane CLI commands to manage connections and run actions. These commands are limited to the skill's primary purpose of interacting with Contentful data and do not perform unauthorized system modifications.- [DATA_EXFILTRATION]: Data access is scoped to the specific Contentful spaces and environments authorized by the user. Authentication is performed via a browser-based flow or authorization URL, ensuring that credentials remain managed by the Membrane platform and are not exposed within the skill code or agent environment.
Audit Metadata