finmei
Pass
Audited by Gen Agent Trust Hub on May 7, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage from the official npm registry. This is a vendor-owned resource necessary for the skill's primary functionality. - [COMMAND_EXECUTION]: Employs the
membraneCLI to manage connections and execute actions. These commands are part of the documented and intended workflow for the Membrane platform. - [CREDENTIALS_UNSAFE]: Adheres to security best practices by leveraging Membrane's server-side authentication management, explicitly instructing the agent never to request API keys or tokens from the user.
- [DATA_EXFILTRATION]: No unauthorized data transmission or suspicious network activity was detected. Data exchange is limited to the official Finmei and Membrane services.
Audit Metadata