sugarsync
Pass
Audited by Gen Agent Trust Hub on Apr 30, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill facilitates interaction with SugarSync via the official Membrane CLI tool, which is a legitimate resource provided by the vendor.
- [EXTERNAL_DOWNLOADS]: The instructions include installing the
@membranehq/clipackage from the official npm registry. This is a standard and safe deployment method for the platform's tooling. - [COMMAND_EXECUTION]: The skill uses several
membraneCLI commands for logging in, managing connections, and running actions. These operations are essential to the skill's primary purpose and do not exhibit malicious behavior. - [CREDENTIALS_UNSAFE]: No hardcoded credentials or sensitive files are accessed. The skill specifically advises against asking the user for API keys, instead utilizing the platform's secure connection management system.
Audit Metadata