traceable
Pass
Audited by Gen Agent Trust Hub on May 2, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/cliglobal npm package, which is the official tool provided by the vendor (membrane) for this integration. - [CREDENTIALS_UNSAFE]: The documentation explicitly follows security best practices by advising against local token storage and instead using a server-side connection management system via
membrane connect. - [COMMAND_EXECUTION]: All shell commands described (e.g.,
membrane action run,membrane action list) are standard operations for the referenced CLI tool and are used as intended for service integration.
Audit Metadata