weavr
Pass
Audited by Gen Agent Trust Hub on Apr 30, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage globally from npm. This is the official command-line tool provided by the vendor for managing integrations and authentication. - [COMMAND_EXECUTION]: The skill utilizes several CLI commands (
membrane login,membrane connect,membrane action list,membrane action run) to interact with the Membrane platform. These commands handle authentication and the execution of predefined actions securely. - [DATA_EXFILTRATION]: No exfiltration risks were identified. The skill explicitly follows security best practices by advising against the manual handling of API keys or tokens, instead utilizing server-side credential management via created connections.
Audit Metadata