loomio
Pass
Audited by Gen Agent Trust Hub on Apr 28, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill recommends installing the official Membrane CLI (
@membranehq/cli) from the NPM registry to facilitate the integration. This is a standard requirement for using the vendor's infrastructure. - [COMMAND_EXECUTION]: The agent is instructed to use the
membraneCLI to perform various tasks such as authentication, listing connections, and executing actions. These commands are scoped to the functionality of the Membrane platform. - [CREDENTIALS_UNSAFE]: The skill explicitly advises against asking users for raw API keys or tokens. Instead, it uses a managed connection system where authentication is handled server-side, reducing the risk of local credential exposure.
- [DATA_EXFILTRATION]: All data transfers are performed through the authenticated Membrane CLI to interact with the Loomio API. The skill uses natural language intent searching to find and execute specific API actions through the platform.
Audit Metadata