purple-sonar
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the
@membranehq/clipackage from the public npm registry. This is the official tool for the service provided by the vendor. - [COMMAND_EXECUTION]: Instructions involve using the
membraneCLI to interact with external services. This is a standard and expected behavior for this platform integration. - [DATA_EXFILTRATION]: The skill implements secure authentication practices by using
membrane loginandmembrane connect, which avoid the need for hardcoded credentials or manual API key handling.
Audit Metadata