pdfless
Pass
Audited by Gen Agent Trust Hub on May 3, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the installation of the
@membranehq/clipackage from the official npm registry. This is a standard dependency for interacting with the Membrane platform. - [COMMAND_EXECUTION]: The skill uses shell commands (e.g.,
membrane login,membrane connect,membrane action run) to interact with the Membrane CLI. These commands are used as intended for service integration and do not show signs of command injection or unauthorized access. - [CREDENTIALS_UNSAFE]: The skill explicitly advises against asking users for API keys or tokens, instead utilizing Membrane's server-side connection management, which is a highly recommended security practice for agent-based integrations.
Audit Metadata