pitchlane
Pass
Audited by Gen Agent Trust Hub on May 3, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the official Membrane CLI (
@membranehq/cli) from the NPM registry. This is a standard installation procedure for the vendor's tooling. - [COMMAND_EXECUTION]: The skill utilizes the
membraneCLI to perform administrative and operational tasks such as logging in, connecting to services, and executing integration actions. These commands are necessary for the skill's functionality and are executed within the context of the vendor's platform. - [CREDENTIALS_UNSAFE]: The skill explicitly advises against asking users for API keys or tokens, instead utilizing a secure OAuth-based connection flow where credentials are managed server-side by the Membrane platform.
- [DATA_EXFILTRATION]: There is no evidence of unauthorized data access or exfiltration. Network operations are restricted to the official vendor's CLI and documented Pitchlane API endpoints.
Audit Metadata