incorta
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage globally using npm. This package is an official tool provided by the vendor for interacting with their platform and is considered a trusted dependency in this context. - [COMMAND_EXECUTION]: The skill uses shell commands through the
membraneCLI to perform operations such as logging in, connecting to the Incorta connector, and executing or creating data actions. These operations are part of the intended functionality of the platform. - [CREDENTIALS_UNSAFE]: The skill explicitly advises against requesting or storing API keys or tokens from users, instead delegating authentication lifecycle management to the Membrane platform to enhance security.
Audit Metadata