testrail
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: Recommends the installation of the official '@membranehq/cli' package from the npm registry. This is a vendor-owned tool required for interacting with the Membrane platform and does not pose a security risk in this context.
- [COMMAND_EXECUTION]: Uses shell commands via the Membrane CLI to manage platform authentication, listing service connections, and executing specific integration actions. These operations are scoped to the user's account and the provided CLI tool.
- [CREDENTIALS_UNSAFE]: The skill proactively addresses credential security by advising against the use of local API keys or tokens, instead leveraging Membrane's managed authentication lifecycle to handle secrets securely on the platform side.
- [SAFE]: No malicious patterns, obfuscation, or unauthorized data access behaviors were detected. The skill is designed with security-first principles, centralizing authentication and providing a controlled interface for third-party data interaction.
Audit Metadata