ninox
Pass
Audited by Gen Agent Trust Hub on Apr 30, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage globally via npm. This is a legitimate vendor tool provided by the author (membranedev) to facilitate platform interaction. - [COMMAND_EXECUTION]: The skill uses various
membraneCLI commands to manage authentication, search for actions, and execute database operations. These commands are the intended mechanism for the integration. - [DATA_EXFILTRATION]: No unauthorized data transfer or credential harvesting was detected. The skill explicitly recommends using the Membrane platform to handle credentials server-side, which is a security best practice.
Audit Metadata