kilo-ssl

Pass

Audited by Gen Agent Trust Hub on Apr 30, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the Membrane CLI (@membranehq/cli) from the official npm registry. This is a standard practice for utilizing the vendor's integration tooling.
  • [COMMAND_EXECUTION]: The instructions involve executing shell commands to manage Kilo SSL data, such as membrane login, membrane connection, and membrane action run. These operations are used to interact with the Membrane platform's API and orchestration layer.
  • [COMMAND_EXECUTION]: Includes a feature to dynamically generate actions (membrane action create) based on natural language descriptions. This utilizes the platform's ability to build integration logic on demand.
  • [SAFE]: The skill explicitly advises against asking users for secrets or API keys, directing the agent to use connection-based authentication handled server-side by the Membrane platform. This minimizes the risk of credential exposure.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 30, 2026, 09:38 PM
Security Audit — agent-trust-hub — kilo-ssl