Skills
skills/membranedev/application-skills/mambu/Gen Agent Trust Hub

mambu

Pass

Audited by Gen Agent Trust Hub on Apr 29, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill requires the installation of the @membranehq/cli package from the official NPM registry. This tool is the vendor's official command-line interface for managing integrations.
  • [COMMAND_EXECUTION]: The skill uses the membrane CLI to perform various operations, including authentication (membrane login), connection management (membrane connect), and action execution (membrane action run). These are standard administrative tasks for the platform.
  • [REMOTE_CODE_EXECUTION]: Through the membrane action create command, the skill allows for the dynamic creation of integration actions on the Membrane server. This is a core feature of the Membrane platform where logic is built and managed server-side.
  • [CREDENTIALS_UNSAFE]: The skill implements a secure authentication flow using membrane login, which handles tokens and refreshes automatically. It explicitly instructs the agent not to request API keys or secrets from the user, reducing the risk of credential exposure.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 29, 2026, 06:50 PM
Security Audit — agent-trust-hub — mambu