barcode-lookup
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill recommends installing the
@membranehq/clipackage via npm. This is a recognized vendor-owned tool provided by the author (membranedev) to facilitate platform interaction. - [COMMAND_EXECUTION]: Utilizes the
membraneCLI to execute search, connection, and action commands. This is the primary intended function of the skill and does not involve arbitrary or malicious shell execution. - [DATA_EXFILTRATION]: Authentication is performed through an OAuth flow (
membrane login), which ensures that the agent handles session tokens rather than hardcoded secrets or sensitive configuration files.
Audit Metadata