yuja
Pass
Audited by Gen Agent Trust Hub on May 7, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the
@membranehq/clipackage from the official NPM registry. This is an expected dependency for utilizing the Membrane platform and follows standard development practices. - [COMMAND_EXECUTION]: The instructions utilize the
membraneCLI for managing service connections, searching for actions, and executing them. These commands are necessary for the skill's stated purpose of platform integration. - [DATA_EXFILTRATION]: The skill includes a 'Best practices' section that explicitly instructs the agent to never ask users for API keys or tokens, instead delegating secret management to the Membrane platform, which is a positive security pattern.
Audit Metadata