sap-concur
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill utilizes the official @membranehq/cli package to manage integrations. This is a standard and expected dependency for interacting with the Membrane platform.
- [SAFE]: Authentication is handled through a secure OAuth-style flow ('membrane login') that redirects users to a browser or provides a specific authorization URL. The skill correctly instructs the agent to let the platform handle credentials rather than collecting secrets directly.
- [SAFE]: All external communications are routed through the Membrane infrastructure, which provides built-in pagination, error handling, and security controls.
- [SAFE]: No evidence of prompt injection, data exfiltration, or malicious persistence mechanisms was found in the instructions or command sequences.
Audit Metadata