Skills
skills/membranedev/application-skills/macrometa/Gen Agent Trust Hub

macrometa

Pass

Audited by Gen Agent Trust Hub on May 2, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill relies on the membrane CLI to manage connections and execute actions. Commands like membrane login, membrane connect, and membrane action run are used to interface with the Macrometa database through the Membrane platform.
  • [EXTERNAL_DOWNLOADS]: The skill requires the @membranehq/cli package, which is downloaded from the npm registry. This is a vendor-owned tool necessary for the skill's operation.
  • [REMOTE_CODE_EXECUTION]: The skill uses npx to dynamically fetch and execute the latest version of the @membranehq/cli tool. Since this originates from a known vendor and is the intended method for utilizing the platform, it is considered a legitimate operational pattern.
Audit Metadata
Risk Level
SAFE
Analyzed
May 2, 2026, 01:42 AM
Security Audit — agent-trust-hub — macrometa