phos
Pass
Audited by Gen Agent Trust Hub on May 1, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the Membrane CLI package (
@membranehq/cli@latest) via npm. This is a standard dependency for the skill's intended functionality and originates from the vendor's official package registry. - [COMMAND_EXECUTION]: The skill uses various
membraneCLI commands to perform authentication, list connections, and execute actions. These operations are transparent and consistent with the skill's stated purpose of managing Phos data. - [SAFE]: No malicious patterns such as prompt injection, data exfiltration, or obfuscation were detected. Authentication is handled server-side through the Membrane platform, avoiding the need for local secret storage in the skill itself.
Audit Metadata