Skills
skills/membranedev/application-skills/nango/Gen Agent Trust Hub

nango

Pass

Audited by Gen Agent Trust Hub on Apr 29, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the official Membrane CLI tool using the command npm install -g @membranehq/cli@latest. This is a legitimate vendor resource used to facilitate the skill's functionality.
  • [COMMAND_EXECUTION]: The instructions utilize the membrane CLI for various operations including authentication (membrane login), connection management (membrane connection connect), and action execution (membrane action run). These commands are standard for interacting with the Membrane platform.
  • [PROMPT_INJECTION]: The skill utilizes natural language intent and action descriptions to discover or create integrations via the CLI. While the agent processes metadata (action names and descriptions) returned by the CLI, this is a standard operational surface for integration tools and relies on the vendor's platform security.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 29, 2026, 12:59 AM
Security Audit — agent-trust-hub — nango