recruitee
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the Membrane CLI via npm (
@membranehq/cli). This is a legitimate vendor resource used to facilitate the integration. - [COMMAND_EXECUTION]: The skill uses the
membranecommand-line tool to manage authentication, connections, and data operations. These are standard operations for this platform's integration model. - [CREDENTIALS_UNSAFE]: The skill explicitly advises against manual secret management, stating that Membrane handles authentication and token refresh server-side, which is a positive security practice.
- [DATA_EXFILTRATION]: While the skill interacts with Recruitee data (candidates, jobs, etc.), it does so through the vendor's controlled infrastructure. There are no patterns indicating unauthorized data transfer to third-party domains.
Audit Metadata