vwork
Pass
Audited by Gen Agent Trust Hub on May 2, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill recommends installing the
@membranehq/clipackage from npm. This is the official tool provided by the vendor to facilitate secure communication with the VWork API. - [COMMAND_EXECUTION]: Various
membranecommands are used to manage connections and execute actions. These commands are part of the intended workflow for interacting with the Membrane platform and do not involve arbitrary or unsafe shell execution. - [DATA_EXFILTRATION]: The skill utilizes Membrane's proxy system for API requests, which handles authentication server-side. This follows security best practices by preventing the exposure of API keys or tokens within the agent's environment.
Audit Metadata