xeditor
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references and installs the
@membranehq/clipackage from the official NPM registry. This is a legitimate tool provided by the vendor to facilitate integrations. - [COMMAND_EXECUTION]: The skill uses shell commands to interact with the Membrane CLI, such as
membrane loginandmembrane action run. These are standard operational commands for the tool's intended purpose. - [SAFE]: No malicious patterns, such as prompt injection, data exfiltration, or obfuscation, were detected. The instructions prioritize security by advising against the manual handling of API keys and leveraging the platform's built-in credential management instead.
Audit Metadata