shortpixel
Pass
Audited by Gen Agent Trust Hub on May 6, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill utilizes the official
@membranehq/clipackage, which is the verified toolset for the skill's author ('membrane'/'membranedev'). - [SAFE]: It implements secure credential management by instructing the agent to use
membrane connectfor authentication, ensuring that sensitive API keys are handled server-side rather than being requested from the user or stored locally. - [SAFE]: Command execution is limited to the Membrane CLI (
membrane), which is used for its intended purpose of action discovery and execution within the vendor's ecosystem. - [SAFE]: No evidence of prompt injection, data exfiltration, or obfuscation techniques were found. All external URLs and resources belong to the verified vendor or the primary service (ShortPixel).
Audit Metadata