infisical
Pass
Audited by Gen Agent Trust Hub on Apr 30, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the Membrane CLI globally via
npm install -g @membranehq/cli@latest. This is a standard installation of a vendor-provided tool required for the skill's functionality. - [COMMAND_EXECUTION]: The skill heavily utilizes shell commands through the
membraneCLI to perform actions such aslogin,connect, andaction run. These commands are the intended mechanism for interacting with the Infisical platform via the Membrane infrastructure. - [DATA_EXFILTRATION]: The skill explicitly advises against requesting or hardcoding API keys, recommending the use of
membrane connectto manage credentials server-side. This approach minimizes the risk of sensitive data exposure within the agent's context or conversation history.
Audit Metadata