inksprout
Pass
Audited by Gen Agent Trust Hub on May 1, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill uses the official Membrane CLI (
@membranehq/cli) for all external interactions. This is a secure best practice as it offloads credential management and OAuth flows to a controlled vendor environment rather than handling secrets in plain text. - [EXTERNAL_DOWNLOADS]: The skill recommends installing the
@membranehq/clipackage from the public NPM registry. This package is the official tool provided by the vendor (membranedev) for this integration. - [COMMAND_EXECUTION]: The skill uses shell-based CLI commands (e.g.,
membrane login,membrane action run) to interact with the platform. These commands are restricted to the functionality of the Membrane ecosystem and do not attempt unauthorized file system access or privilege escalation.
Audit Metadata