templated
Pass
Audited by Gen Agent Trust Hub on Apr 30, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the official Membrane CLI package (
@membranehq/cli) from the public NPM registry. This is the legitimate tool provided by the skill's author (membranedev) for interacting with their platform. - [COMMAND_EXECUTION]: The skill utilizes the
membranecommand-line interface to perform necessary operations such as authentication, connection management, and running document automation tasks. These commands are part of the intended functionality and are executed within the context of the user's terminal. - [DATA_EXFILTRATION]: The skill implements secure authentication practices by delegating credential handling to the Membrane platform. It explicitly advises against requesting or storing API keys locally, which reduces the risk of credential exposure.
Audit Metadata