spade
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the installation of the
@membranehq/clipackage from the official NPM registry. This is the legitimate management tool provided by the vendor for interacting with their platform. - [COMMAND_EXECUTION]: Uses the
membranecommand-line utility to perform Spade operations, such as listing connections and running actions. These commands are transparently documented and scoped to the task of project management. - [CREDENTIALS_SAFE]: The skill follows security best practices by using a delegated authentication flow (
membrane login) and explicitly warning against the manual handling of API keys or tokens.
Audit Metadata