userpilot
Pass
Audited by Gen Agent Trust Hub on May 3, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [SAFE]: No malicious patterns or security risks were identified. The skill follows security best practices by utilizing a managed authentication provider (Membrane) rather than requesting or storing raw API keys.
- [EXTERNAL_DOWNLOADS]: The skill guides the user to install the
@membranehq/clipackage from the public npm registry. This is the official tool provided by the vendor for interacting with their services. - [COMMAND_EXECUTION]: The skill uses the
membranecommand-line utility to perform actions such as logging in, connecting to Userpilot, and executing specific integration tasks. All commands are standard for the intended integration workflow.
Audit Metadata