truework
Pass
Audited by Gen Agent Trust Hub on Apr 28, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage from NPM. This is an official tool provided by the vendor (Membrane) and is necessary for the skill to interact with the integration platform. - [COMMAND_EXECUTION]: The skill uses various
membraneCLI commands for logging in, managing connections, and executing API actions. These commands are used according to their intended purpose for service integration. - [CREDENTIALS_UNSAFE]: The documentation explicitly directs the agent to avoid asking for user secrets or API keys, relying instead on the platform's built-in authentication lifecycle management. This represents a secure approach to identity and access management.
Audit Metadata