solcast
Pass
Audited by Gen Agent Trust Hub on May 1, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill uses the
@membranehq/clipackage for its operations. This is a scoped package belonging to the verified author 'membranedev' and is used as intended for service integration. - [SAFE]: Credential management is handled through Membrane's server-side connection system (
membrane connect). This approach prevents the exposure of sensitive API keys or tokens within the agent's environment or the skill's instructions. - [COMMAND_EXECUTION]: The skill executes shell commands via the
membraneCLI to interact with the Solcast API. These commands are limited to the intended functionality of managing solar data connections and actions. - [SAFE]: While the skill ingests external data from the Solcast API via CLI output, this is the primary purpose of the integration.
- Ingestion points: CLI output from
membrane action runandmembrane action listinSKILL.md. - Boundary markers: Not explicitly defined in instructions.
- Capability inventory: Subprocess execution of the
membraneCLI inSKILL.md. - Sanitization: Standard CLI output processing is assumed.
Audit Metadata