snyk
Pass
Audited by Gen Agent Trust Hub on May 3, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill utilizes the official
@membranehq/clifor all interactions, which is a trusted resource provided by the skill's author (membranedev). This is a standard and safe deployment method for this platform. - [SAFE]: All authentication is handled server-side through the
membrane connectflow. This prevents the agent from needing to handle, store, or solicit sensitive API keys or tokens from the user, significantly reducing the risk of credential exposure. - [SAFE]: The skill encourages the discovery and use of pre-built actions, which minimizes the need for custom code execution and ensures that API interactions are handled consistently and securely by the Membrane infrastructure.
- [SAFE]: No malicious patterns such as prompt injection, data exfiltration, or obfuscation were detected in the instructions or command examples.
Audit Metadata