Skills
skills/membranedev/application-skills/spiff/Gen Agent Trust Hub

spiff

Pass

Audited by Gen Agent Trust Hub on Apr 30, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the @membranehq/cli package from the official NPM registry.
  • [COMMAND_EXECUTION]: It uses the membrane command-line utility to perform integration tasks, including authentication, connection management, and action execution.
  • [DATA_EXFILTRATION]: The skill enables communication with the Spiff API through a proxy managed by the vendor. This network activity is a core part of the skill's documented functionality for managing commission data.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 30, 2026, 03:04 AM