datascope
Pass
Audited by Gen Agent Trust Hub on May 5, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the Membrane CLI package (
@membranehq/cli@latest) from the official npm registry, which is a standard procedure for this vendor's tools. - [COMMAND_EXECUTION]: The skill utilizes the
membraneCLI to perform authentication (membrane login), manage connections (membrane connect), and execute actions (membrane action run). These operations are consistent with the skill's stated purpose of integrating with the DataScope platform. - [SAFE]: The skill follows security best practices by delegating credential management to the Membrane platform instead of requesting or storing local secrets. No patterns of prompt injection, obfuscation, or unauthorized data exfiltration were detected.
Audit Metadata