kandy
Pass
Audited by Gen Agent Trust Hub on Apr 30, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill directs the user to install the
@membranehq/clipackage from the official npm registry. This tool is a resource provided by the vendor to facilitate interaction with their platform. - [COMMAND_EXECUTION]: The skill utilizes the
membraneCLI to perform various tasks such as logging in, creating connections, and executing actions. These commands are part of the intended workflow for the Membrane integration platform. - [SAFE]: The skill explicitly instructs the agent to avoid asking for sensitive information like API keys or tokens, instead delegating credential management to the Membrane platform. This reduces the risk of credential exposure.
Audit Metadata