wavemaker
Pass
Audited by Gen Agent Trust Hub on May 3, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONCREDENTIALS_UNSAFEREMOTE_CODE_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill documentation instructs the installation of the
@membranehq/clipackage from the NPM registry. This is the official command-line tool provided by the author (Membrane) to interact with their platform services. - [COMMAND_EXECUTION]: The skill utilizes various
membraneCLI commands for its core functionality, such as managing connections and executing actions. These commands are standard for the Membrane platform. - [CREDENTIALS_UNSAFE]: Authentication is handled via the
membrane logincommand. This delegates credential management to the vendor's official platform flow, ensuring that sensitive tokens are handled securely without being hardcoded. - [REMOTE_CODE_EXECUTION]: The skill facilitates the creation and execution of remote actions on the Membrane platform via the CLI. This is the primary intended purpose of the integration and is performed within the vendor's managed environment.
Audit Metadata