paved
Pass
Audited by Gen Agent Trust Hub on May 6, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the @membranehq/cli npm package, which is the official tool for the Membrane platform.
- [COMMAND_EXECUTION]: The skill relies on executing membrane CLI commands to perform tasks such as logging in, connecting to services, and running actions. Commands like membrane action list and membrane action create use natural language inputs which are passed to the CLI.
- [DATA_EXFILTRATION]: Interaction with the Paved API is performed via the Membrane platform. This is the intended behavior for managing newsletter advertising data and does not constitute unauthorized exfiltration.
Audit Metadata