alegra
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage globally via npm. This is a standard procedure for using the vendor's command-line interface tools. - [COMMAND_EXECUTION]: The skill uses various
membraneCLI commands (login,connect,action run,request) to manage authentication and interact with the Alegra API. These commands are part of the intended functionality for managing accounting data through the Membrane platform. - [CREDENTIALS_UNSAFE]: The skill follows security best practices by explicitly advising against asking for user API keys or tokens, instead utilizing Membrane's server-side connection management to handle authentication safely.
Audit Metadata