punchh
Pass
Audited by Gen Agent Trust Hub on May 1, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the
@membranehq/clipackage from npm, which is the official command-line interface for the Membrane platform. - [COMMAND_EXECUTION]: Multiple shell commands are utilized to interact with the Membrane platform (
membrane login,membrane connect,membrane action list/run/create). These commands are standard for the intended integration. - [DYNAMIC_EXECUTION]: The skill includes functionality to dynamically generate new actions using the
membrane action createcommand. This logic is handled by the vendor's server-side platform.
Audit Metadata