robocorp
Pass
Audited by Gen Agent Trust Hub on May 13, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage from the NPM registry and utilizesnpxto run it. These tools are provided by the official vendor of the skill. - [COMMAND_EXECUTION]: The skill relies on the execution of
membraneCLI commands for authentication, managing connections, and running Robocorp actions. This is the primary intended functionality and operates within the context of the vendor's platform. - [DATA_EXFILTRATION]: Communication with external endpoints (Robocorp and Membrane) is performed through the official CLI. The skill explicitly advises against asking users for API keys, instead using server-side connection management, which reduces the risk of credential exposure.
Audit Metadata