timing
Pass
Audited by Gen Agent Trust Hub on May 1, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill relies on the official
@membranehq/cliNode.js package, which is a verified resource provided by the vendor (membranedev). - [SAFE]: Authentication is handled through the Membrane platform's secure flow (
membrane login), which prevents the need for hardcoded credentials or local storage of sensitive API keys within the agent's environment. - [COMMAND_EXECUTION]: The provided instructions use standard shell commands to install and interact with the Membrane CLI. These commands are necessary for the skill's functionality and do not exhibit malicious patterns like privilege escalation or unauthorized file access.
- [EXTERNAL_DOWNLOADS]: The skill instructs the agent to install the Membrane CLI from the official NPM registry, which is a trusted and expected source for this integration.
Audit Metadata