verimi
Pass
Audited by Gen Agent Trust Hub on Apr 30, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the @membranehq/cli package from the official NPM registry. This package is the standard command-line interface for the Membrane platform as described in the skill's metadata and documentation.
- [COMMAND_EXECUTION]: The skill utilizes the membrane CLI to perform operations such as authentication, listing connections, and executing actions. These commands are the intended mechanism for interacting with the Verimi service through the Membrane platform.
- [CREDENTIALS_UNSAFE]: The skill documentation includes security best practices, explicitly instructing the agent to never ask the user for API keys or tokens. Instead, it leverages a connection-based model where the platform handles authentication server-side, reducing the risk of credential exposure.
Audit Metadata