sourcegraph
Pass
Audited by Gen Agent Trust Hub on Apr 30, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the official Membrane CLI (
@membranehq/cli) from the NPM registry. This is a standard and expected operation for using the vendor's platform. - [COMMAND_EXECUTION]: The instructions involve running the
membraneCLI to manage connections, list actions, and execute workflows. These commands are part of the documented and intended functionality of the integration. - [DATA_EXFILTRATION]: No unauthorized data access or exfiltration patterns were found. The skill explicitly follows security best practices by advising the agent to let the platform handle credentials rather than asking the user for API keys.
- [PROMPT_INJECTION]: The instructions do not contain any patterns attempting to override agent safety guidelines, extract system prompts, or bypass constraints.
Audit Metadata