postgrest
Pass
Audited by Gen Agent Trust Hub on May 5, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the installation of the
@membranehq/clipackage from the NPM registry and utilizesnpxto fetch and execute the tool remotely. These are official resources provided by the vendor. - [COMMAND_EXECUTION]: The skill uses a command-line interface (
membrane) to perform authentication, manage connections, and execute database operations. This includes runningmembrane action run, which executes logic hosted on the Membrane platform. - [DATA_EXFILTRATION]: While the skill manages authentication, it does so through an OAuth-like flow where credentials are managed server-side by the vendor (Membrane), minimizing local exposure of sensitive tokens or API keys.
Audit Metadata