typeflowai
Pass
Audited by Gen Agent Trust Hub on May 1, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the installation of the
@membranehq/clipackage via NPM. This is a legitimate tool provided by the vendor (Membrane) to facilitate secure integrations. - [COMMAND_EXECUTION]: Uses the
membraneCLI to perform actions such as authentication, connection management, and running TypeflowAI tasks. All commands are standard operations for the platform's workflow. - [DATA_EXPOSURE]: The skill explicitly advises against asking users for API keys or tokens, instructing the agent to use Membrane's connection system to handle credentials server-side, which is a positive security practice.
Audit Metadata