easypost
Pass
Audited by Gen Agent Trust Hub on Apr 30, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the '@membranehq/cli' package from the official NPM registry. This is a vendor-provided tool necessary for the skill's functionality and aligns with the author's established ecosystem.
- [COMMAND_EXECUTION]: Provides instructions for using the 'membrane' CLI to manage connections and run shipping-related actions. These commands are standard for the platform's operation and do not exhibit malicious intent or unauthorized access.
- [CREDENTIALS_UNSAFE]: No sensitive credentials or API keys are hardcoded in the skill. Authentication is handled through the 'membrane login' flow, which is a secure method for managing user sessions without local secret storage or exposure.
Audit Metadata