Skills
skills/membranedev/application-skills/zoho-sign/Gen Agent Trust Hub

zoho-sign

Pass

Audited by Gen Agent Trust Hub on Apr 29, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructs the installation of the Membrane CLI package (@membranehq/cli) from the npm registry, which is the official tool provided by the vendor for this integration.
  • [COMMAND_EXECUTION]: Shell commands are used to interact with the Membrane CLI for logging in, connecting to Zoho Sign, and executing actions. These are standard operational commands for the platform.
  • [SAFE]: Authentication is managed via the Membrane platform's connection flow. The skill follows best practices by explicitly instructing the agent never to ask for or store API keys or tokens locally.
  • [SAFE]: No malicious patterns such as prompt injection, obfuscation, persistence mechanisms, or unauthorized data exfiltration were detected.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 29, 2026, 06:50 PM
Security Audit — agent-trust-hub — zoho-sign