10to8
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the installation of the official Membrane CLI (@membranehq/cli) via npm. As this is a verified package from the skill vendor (membranedev), it is documented as a safe and expected dependency.
- [COMMAND_EXECUTION]: The skill provides various commands using the 'membrane' CLI to interact with 10to8 data. These commands are limited to the intended functionality of the integration and do not perform unauthorized system modifications or privilege escalation.
- [SAFE]: No malicious patterns, such as prompt injection, obfuscation, or data exfiltration, were detected during the analysis. The skill uses a secure browser-based authentication flow managed by the Membrane platform, which avoids the exposure of sensitive credentials.
Audit Metadata