Skills
skills/membranedev/application-skills/webcrm/Gen Agent Trust Hub

webcrm

Pass

Audited by Gen Agent Trust Hub on Apr 29, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the Membrane CLI from the official NPM registry using npm install -g @membranehq/cli@latest. This is a standard installation procedure for the vendor's tools.
  • [COMMAND_EXECUTION]: The skill uses the membrane CLI to perform operations such as login, connecting to WebCRM, and executing actions. These commands are part of the intended integration workflow.
  • [REMOTE_CODE_EXECUTION]: The skill utilizes npx @membranehq/cli@latest to discover actions. This pattern executes the latest version of the vendor's CLI directly from the registry, which is an expected use case for this platform.
  • [DATA_EXPOSURE]: The skill emphasizes security best practices by instructing the agent to never ask the user for API keys or tokens, instead delegating credential management to the Membrane server-side infrastructure.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 29, 2026, 02:47 AM
Security Audit — agent-trust-hub — webcrm