timecamp
Pass
Audited by Gen Agent Trust Hub on Apr 30, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the
@membranehq/cliNode.js package. This is a legitimate dependency provided by the vendor to facilitate interaction with the Membrane ecosystem. - [COMMAND_EXECUTION]: The skill provides a set of CLI commands for the agent to execute, including
membrane login,membrane connect, andmembrane action run. These are used to manage the TimeCamp integration and do not exhibit malicious behavior. - [SAFE]: The skill follows security best practices by utilizing an external authentication provider (Membrane) to handle credentials, ensuring that sensitive API tokens for TimeCamp are not handled directly by the agent or stored in local configuration files.
Audit Metadata