siteleaf
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the
@membranehq/clipackage from npm, which is the official command-line tool for the Membrane platform. This is documented for both global installation and one-off execution via npx. - [COMMAND_EXECUTION]: The instructions guide the agent to perform several operations using the
membraneCLI, such as logging in, ensuring connections, and executing actions. These commands are used to facilitate the interaction between the agent and the Siteleaf CMS. - [DATA_EXFILTRATION]: The skill demonstrates safe credential management practices by instructing the agent to use the vendor's connection system instead of requesting or storing raw API keys or tokens from the user.
Audit Metadata