workday-soap
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage globally via npm. This is a legitimate tool provided by the skill's author (membranedev) to interact with their platform. - [COMMAND_EXECUTION]: The skill utilizes several CLI commands (
membrane login,membrane connect,membrane action run) to manage authentication and execute integration logic. These commands are within the expected scope of a platform-specific integration skill. - [SAFE]: The skill correctly advises users to use the Membrane platform for credential management rather than hardcoding API keys or tokens, following security best practices.
Audit Metadata