sterlingbackcheck
Pass
Audited by Gen Agent Trust Hub on May 2, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the installation of the @membranehq/cli package from the official npm registry, which is a trusted tool provided by the vendor for platform connectivity.
- [COMMAND_EXECUTION]: Shell commands are used to invoke the membrane CLI for logging in, managing connections, and executing SterlingBackcheck actions. These operations are restricted to the platform's intended functionality.
- [DATA_EXFILTRATION]: The skill follows security best practices by delegating credential management to the Membrane platform. Authentication is performed via secure tokens handled by the CLI, preventing the need for the agent to access or store raw API keys locally.
Audit Metadata