sumup
Pass
Audited by Gen Agent Trust Hub on May 1, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the Membrane CLI tool from the NPM registry (@membranehq/cli). This is a vendor-provided resource necessary for the skill's core functionality.
- [COMMAND_EXECUTION]: The instructions involve running shell commands to authenticate with Membrane and interact with the SumUp API. These commands are used as intended for service integration and do not perform unauthorized system modifications.
- [DATA_EXFILTRATION]: The skill uses Membrane's server-side connection management to handle authentication. This design prevents the exposure of API keys or tokens in the local environment, adhering to security best practices for credential management.
Audit Metadata