nifty
Pass
Audited by Gen Agent Trust Hub on Apr 28, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill recommends the installation of
@membranehq/clifrom the official NPM registry. This package is the authorized command-line interface for the Membrane platform described in the skill. - [COMMAND_EXECUTION]: Logic involves executing the
membraneCLI tool to perform Nifty operations. These commands are used for their intended purpose of project management and data retrieval. - [CREDENTIALS_UNSAFE]: The skill correctly avoids requesting or storing hardcoded API keys. Instead, it utilizes a managed authentication flow where credentials are encrypted and stored server-side by the platform vendor.
- [DATA_EXFILTRATION]: No unauthorized data transmission patterns were identified. All network activity is directed through the official CLI to the platform's API endpoints.
Audit Metadata